Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
Blokirali ste korisnika/cu @FlxP0C
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @FlxP0C
-
P0C proslijedio/la je Tweet
I keep forgetting how to use the Python bindings for the Unicorn Engine, so I created a nice README for it. I plan to add a complete code walkthrough but for now it’s still a nice reference.https://github.com/alexander-hanel/unicorn-engine-notes/blob/master/README.md …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
P0C proslijedio/la je Tweet
Many of you have seen
#Emotet in the wild and in sandboxs, but I've seen few who've had the malware move toward full domain compromise in a lab environment. Take a read and make sure your powershell detection is ready.#DFIR#infosec https://laskowski-tech.com/2019/10/16/emotet-an-analysis-of-ttps-part-1-the-break-in/ …pic.twitter.com/nVXfN3OFD3
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
The Dnschess challenge was quite nice. But now my brain is fried and I need a break
#flareon6Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
P0C proslijedio/la je Tweet
"We build our computer systems the way we build our cities: over time, without a plan, on top of ruins." — Ellen Ullman
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
P0C proslijedio/la je Tweet
The FormBook malware has a creative approach to hiding encrypted strings - it stores them in gibberish code as operands and retrieves them using a small disassembly engine. Wrote a short post about it here: https://usualsuspect.re/article/formbook-hiding-in-plain-sight …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
P0C proslijedio/la je Tweet
New blog: Hancitor's packer demystified
: https://uperesia.com/hancitor-packer-demystified … |
step-by-step unpacking guide |
insight into a packer which has been used by many malware families |
h/t for sharing samples & writeups: @James_inthe_box@0verfl0w_@VK_Intel@malware_trafficpic.twitter.com/pC3s6Sltvy
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
P0C proslijedio/la je Tweet
#CARBANAKWeek Post 2: we take a look at many other features of#CARBANAK from a source code perspective, such as antivirus evasion techniques as well as secrets, unused code, and indicators buried in commented code. >> Read:https://feye.io/2vhSuGPPrikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
P0C proslijedio/la je Tweet
We found the full CARBANAK source code & previously unseen plugins. Our
#FLARE team spent 500 hours analyzing the 100,000+ lines of code.@mykill &@jtbennettjr just dropped day 1 of their 4-part blog series: https://www.fireeye.com/blog/threat-research/2019/04/carbanak-week-part-one-a-rare-occurrence.html … Source code linked in blog.#CarbanakWeek
pic.twitter.com/M5IOhWsIXL
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
P0C proslijedio/la je Tweet
Dissecting Emotet’s network communication protocol ~ https://int0xcc.svbtle.com/dissecting-emotet-s-network-communication-protocol …
#Emotetpic.twitter.com/FbD5zLReTb
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
P0C proslijedio/la je Tweet
QScripts: a simple productivity plugin for IDA scripting (http://0xeb.net/2019/04/ida-qscripts/ …)
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
P0C proslijedio/la je Tweet
We just released mkYARA: a tool to generate YARA rules based on executable code, wildcarding variable values such as stack offsets, memory addresses etc. https://blog.fox-it.com/2019/03/28/mkyara-writing-yara-rules-for-the-lazy-analyst/ …pic.twitter.com/yTBVHns4BO
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
P0C proslijedio/la je Tweet
I wrote a blog post on what I think it means to be a distinguished engineer or technical fellow. https://blog.jessfraz.com/post/defining-a-distinguished-enginner/ …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Using IDA Python to analyze Trickbot: How to deal with encrypted strings and an IAT created during runtime in IDA Python. My latest piece onhttps://cyber.wtf/2019/03/22/using-ida-python-to-analyze-trickbot/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
P0C proslijedio/la je Tweet
#KARTA - A new, super cool,#ida plugin we just released. A modular framework for identifying and matching open source library symbols within large binaries. kudos to@EyalItkin for creating it (!) Check it out.https://github.com/CheckPointSW/Karta …Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
P0C proslijedio/la je Tweet
A tutorial walking through the process of devirtualising programmes protected by VMProtect 3https://github.com/1111joe1111/tuts/tree/master/vm_protect_3 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
P0C proslijedio/la je Tweet
Analysis of BlackMoon (Banking Trojan)'s Evolution, And The Possibility of a Latest Version Under Development https://www.peppermalware.com/2019/03/analysis-of-blackmoon-banking-trojans.html …
#MALWARE#BLACKMOON#KRBANKER#BINDIFFHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
P0C proslijedio/la je Tweet
I've finally got around to completing my first post on reversing
#ISFB, specifically, unpacking and analyzing the first stage loader (executable): https://0ffset.net/reverse-engineering/malware-analysis/analysing-isfb-loader/ … As always, all samples mentioned have been uploaded to@virusbay_iopic.twitter.com/x7qP0kwbSf
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
P0C proslijedio/la je Tweet
Two popular games and one gaming plaform application were found having a similar backdoor planted by a group that compromised the asian developpers. Our analysis:https://www.welivesecurity.com/2019/03/11/gaming-industry-scope-attackers-asia/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
P0C proslijedio/la je Tweet
In latest article, we present our analysis of
#Trickbot loader, including a few examples of sample deobfuscation using idaapi.https://www.cert.pl/en/news/single/detricking-trickbot-loader/ …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
P0C proslijedio/la je Tweet
i wrote a piece on the career choices managers often don't realize they're making, especially around technical leadership vs organizational leadership. https://charity.wtf/2019/01/04/engineering-management-the-pendulum-or-the-ladder/ …
get what the fuck you want out of your career in 2019
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.