Search results

  1. People View all

  2. 28 Nov 2013

    New Adobe Reader and priv esc 0day targeting XP, Server2k3

    1 reply 11 retweets 6 likes
  3. 28 Nov 2013

    Cyanogenmod installer removed from Play store.

    1 reply 4 retweets 2 likes
  4. 28 Nov 2013

    mSpy, Android and iOS monitoring software

    1 reply 11 retweets 10 likes
  5. 28 Nov 2013

    For folks who are wondering, the CanSecWest CFP is open, now, until December 16. Submissions to secwest14(at)

    27 retweets 8 likes
  6. 24 Nov 2013

    Process Hacker

    3 replies 14 retweets 15 likes
  7. 24 Nov 2013

    Why would an un-networked device be hitting \Device\Mup (Control 0x1403a4 - Device 0x14 Function 233 Method 0) a lot?

    4 replies 2 retweets 1 like
  8. 24 Nov 2013

    Thanks . WAV file

    3 replies 3 retweets 3 likes
  9. 23 Nov 2013

    I'm not always right. so sorry if I've wasted any folks time.

    6 replies 1 retweet 2 likes
  10. 23 Nov 2013
    Replying to

    Ok that sounds like a good explanation, the groove dll in explorer. -thanks. Just being thorough :)

    1 reply 2 likes
  11. 23 Nov 2013

    then immediately after this bit of oddness in the recycle bin with desktop.ini files and mounted volumes

    1 reply
  12. 23 Nov 2013

    explorer.exe, after lot of stuff with .pf files, going to BitBucket vol, looking at uac process .pf file 349 slide in

    1 reply 3 likes
  13. 23 Nov 2013
    Replying to

    Damn fine q. "How would I go about imaging a macbook pro firmware?" copernicus doesn't run on macs.

    3 replies 1 retweet 3 likes
  14. 23 Nov 2013

    explorer.exe after some mroe messing with .pf registry keys, then accessing some odd files in the recycle bin

    1 retweet 1 like
  15. 23 Nov 2013

    and this. hitting same url key repeatedly, and then going to .pf files

    4 replies
  16. 23 Nov 2013

    explorer.exe being funny... like so...

    3 replies 2 retweets 1 like
  17. 23 Nov 2013

    also keep in mind this machine is fully idle, freshly rebooted, and not networked.

    1 retweet 1 like
  18. 23 Nov 2013

    This is about 160-200 images into the set. Uploading fulls set so folks can download now.

    2 likes
  19. 23 Nov 2013

    immediately after this, explorer checks some shell command registry keys, and starts to check registry keys associated with .pf file setup.

    2 retweets
  20. 23 Nov 2013

    Explorer.exe is checking creation times on all the .pf files, and then immediately writing to the office groove key after each file. odd

    2 retweets
  21. 23 Nov 2013

    I had deleted the prefetch files before this dump started to get procmont to report events again.

    1 like

No results.

Loading seems to be taking a while.

Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.