Gadix

Cutter v1.10.1 released! Tomorrow, GitHub will capture and store every repository in an archival facility deep in an Arctic mountain. Today, we release a special edition for the benefit of future mankind and other beings Get it @ https://cutter.re  Highlights >>pic.twitter.com/SjYVWJsi7I

r2frida 4.2 is out! You can now use breakpoints and eternalize @fridadotre scripts in @radareorg ! /cc @NowSecureMobilepic.twitter.com/BtdKWZ1onI

VirusTotal Graph++ https://blog.virustotal.com/2020/01/virustotal-graph.html …pic.twitter.com/fegj3tMEjZ

En estos dos días, recopilé 1330 servidores SMTP's que son parte de la botnet de SPAM de EMOTET, en los flujos de red se pueden ver las distintas credenciales de acceso que utiliza la botnet para intentar loguearse :D #DataLeak El listado de SMTP's https://pastebin.com/AdG0rAG3 pic.twitter.com/l8NJ4fwe7V

Updated PoC to include the root trusted CA "Microsoft ECC Product Root Certificate Authority 2018" Also included a signed and unsigned 7z.exe for you to test out. https://github.com/ollypwn/CVE-2020-0601 … Please only use for research and education. #curveballpic.twitter.com/VHPUtg96zh

Yep, managed to combine a few CVE-2020-0601 POC guides to sign a binary which unpatched Windows will determine to be valid. The CA does not need to be the MS ECC Authority. It's CRITICAL to patch this for Windows 10/2016/2019 OS relying on publisher trust for App Whitelisting.pic.twitter.com/g2aZIK8JhG

Signed CVE-2020-0601 binary tagged on Virustotal https://www.virustotal.com/gui/file/95597ed5ed579d4fe1e9a2177c29178038e4f837998bc058c94ede6ec55b7547/details …pic.twitter.com/Rfil0hBEkC

Ghidra Script that sets the names for missing function names by looking for relevant patterns in the binary! Hope that will help you too :) https://github.com/alephsecurity/general-research-tools/tree/master/ghidra_scripts …pic.twitter.com/YmgTMhLJXR

Oracle VM VirtualBox 6.1.2, now available, adds support for Linux Host Kernel 5.5, bug fixes and security fixes part of Oracle Critical Patch Update for January 2020 @virtualbox @linux_kernel @oraclelinux http://ora.cl/nu7rA pic.twitter.com/e48qVzF8hp

Nice of Microsoft to add telemetry for #CVE-2020-0601, they are expecting exploitation New Function in crypt32.dll - ChainLogMSRC54294Error CveEventWrite(L"[CVE-2020-0601] cert validation", v8); #diaphorapic.twitter.com/1eW8YZUIWB

Damn.. #maze #ransomware guys are raising the bar: they are publishing part of their victims list pic.twitter.com/k3yd83IGsX