Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @milenkowski
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @milenkowski
-
[4/4] Credits are not mine alone. They primarily go to my exceptional master’s student
@lmkalg. See you at@WeAreTroopers#TR20, Pablo! Feel free to contact us if you have any questions.Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
[3/4] There are more "elegant" ways to monitor Telemetry ETW activities. We focus on the windbg alternative because it provides kernel-level insight (useful for extracting info available only at this level) + others may easily extend the scripts to extract any related info.
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
[2/4] Windows Telemetry ETW Monitor consists of two components: - the Windbg Framework: a set of windbg scripts for monitoring Telemetry ETW activities - the Telemetry Information Visualization (TIV) framework: visualization of information and statistics (web format).pic.twitter.com/5uiNj7laYm
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hey, new upload to Windows-Insight - the Windows Telemetry ETW Monitor framework: https://github.com/ernw/Windows-Insight/tree/master/files/wintel_etwmonitor … The framework monitors and reports on ETW (Event Tracing for Windows) activities for providing data to Windows Telemetry. Works on Windows 10, version 1909. [Thread: 1/4]
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Aleksandar Milenkoski proslijedio/la je Tweet
ACTUAL effective improvements to security come from building mitigations to kill entire classes of vulns, not bug hunting. You can stumble on a single CVE, does that make you leet? No. If you find 80+ while fuzzing a component? Maybe, POC||GTFO applies tho And, finally..(2/3)
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Aleksandar Milenkoski proslijedio/la je Tweet
Our
#TR20 training "Insight into Windows Internals" from@milenkowski delivers basic knowledge on the core components and inner working principles of the#Windows10 operating system. Check it out!
https://troopers.de/troopers20/trainings/wllgls/ …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Aleksandar Milenkoski proslijedio/la je Tweet
Slides and material from our talk on attacking container build systems from
#BHEU are now online: https://github.com/heroku/bheu19-attacking-cloud-builds … And so is Terrier, the CI-oriented container integrity verification tool (mainly due to the amazing effort of the@brompwnie):https://github.com/heroku/terrier/Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hey, new uploads to Windows-Insight: - an article on invocations between ci.dll and skci.dll: https://github.com/ernw/Windows-Insight/blob/master/articles/Device%20Guard/WDAC/dg_ci_skci_signed.pdf …; - a WiP paper on a framework for executing Hyper-V hypercalls (this allows fuzzing and testing performance): https://github.com/ernw/Windows-Insight/blob/master/articles/VSM/milenkoski_issrew_signed.pdf … (code will follow soon!)
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hey, I just uploaded a couple of articles on DeviceGuard/WDAC internals in the Windows-Insight repo: https://github.com/ernw/Windows-Insight/tree/master/articles/Device%20Guard/WDAC …. More articles on WDAC internals focusing on the most recent implementation (incl. new policy file management, driver blacklisting etc.) coming soon!
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Super excited for visiting
@Microsoft offices @ Redmond for the first time! We (+@0xpeanuts) had great#Windows10 discussions with some awesome people!pic.twitter.com/RP97v1wxWe
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Aleksandar Milenkoski proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Aleksandar Milenkoski proslijedio/la je Tweet
Yesterday was Amazing - went to VMworld to be part of the first public demo of VMware Workstation running on top of the Hyper-V Hypervisor :https://techcommunity.microsoft.com/t5/Virtualization/VMware-Workstation-and-Hyper-V-Working-Together/ba-p/825831 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Happy to announce that a paper of my research team
@spec_perf’s Research Group was accepted at WoSAR@ISSREConf! We research on testing behavior aspects of#Microsoft’s Hyper-V, including#Windows Virtual Secure Mode setups. A testing framework and results will be published soon!Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Aleksandar Milenkoski proslijedio/la je Tweet
Good Virtual Secure Mode overview and some other Hyper-V internals information by
@BSI_Bund https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Cyber-Sicherheit/SiSyPHus/Workpackage6_Virtual_Secure_Mode.pdf?__blob=publicationFile&v=2 …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Aleksandar Milenkoski proslijedio/la je Tweet
TR19: The Anatomy of Windows Telemetry, by
@0xpeanuts &@milenkowskihttps://www.youtube.com/watch?v=VXHlB0EdBe0 …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Aleksandar Milenkoski proslijedio/la je Tweet
If you write about Windows internals, then to be asked where you get your information from is a sign that you are presenting it wrong. If you read about Windows internals and you wonder where names and types have come from, then don't indulge the writer: disregard them as sloppy.
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Aleksandar Milenkoski proslijedio/la je Tweet
6 Hyper-V CVE's were fixed today! 1 DOS found by the Hyper-V dev team. 1 RCE found by Qihoo360 IceSword Lab. 2 DOS and 1 RCE found by me. 1 RCE found by an anonymous research and me.
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Aleksandar Milenkoski proslijedio/la je Tweet
That was quicker than I anticipated... the book is now available in print from Amazon!https://www.amazon.com/gp/product/1977593372/ref=dbs_a_def_rwt_bibl_vppi_i5 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Aleksandar Milenkoski proslijedio/la je Tweet
If you are into Windows Kernel stuff,
@zodiacon (Pavel Yosifovich)’s Windows Kernel Programming book is a MUST. This is THE book I was waiting for for years. I bought it today and already finished 4 chapters. Brilliant book! Practical, to the point.Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
We will aim at updating the repository continuously, that is, as soon as new research comes up and/or when publication of research results originating from project work is allowed. For example, we expect to publish soon new contents on the latest Windows 10 LTSC release.
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.