Forwarded from vx-underground
Mildly irritating things seen by malware nerds:
- Person saying {thing} evades EDR and/or AV, but they've never performed against an enterprise environment with an active Blue Team (they don't know what they're talking about). Yes, your payload avoided basic analysis, but stop disrespecting Blue Team nerds, you're seriously under estimating them.
- Person saying {language} is superior to {other language} for malware development. This is like watching Linux nerds argue about distros
- Person saying their malware is FUD. It is only undetected because you've successfully infected 4 machines running Windows 7. Large scale campaigns are difficult to run. Stop disrespecting reverse engineers. They're dealing with serious Threat Groups.
- Person saying {thing} is undetectable (in theory) because they've implemented over 9000 different evasion techniques. No, you've filled your binary with IOCs.
- Person dissing ransomware payloads, saying it is for noobs. This is both correct and incorrect. Writing single threaded ransomware is easy. Writing fast ransomware (thread pools, queuing, I/O completion ports) that can both encrypt and decrypt successfully regardless of file type and file size can be challenging.
- Anyone who references Mr. Robot when discussing malware.
- Person saying {thing} evades EDR and/or AV, but they've never performed against an enterprise environment with an active Blue Team (they don't know what they're talking about). Yes, your payload avoided basic analysis, but stop disrespecting Blue Team nerds, you're seriously under estimating them.
- Person saying {language} is superior to {other language} for malware development. This is like watching Linux nerds argue about distros
- Person saying their malware is FUD. It is only undetected because you've successfully infected 4 machines running Windows 7. Large scale campaigns are difficult to run. Stop disrespecting reverse engineers. They're dealing with serious Threat Groups.
- Person saying {thing} is undetectable (in theory) because they've implemented over 9000 different evasion techniques. No, you've filled your binary with IOCs.
- Person dissing ransomware payloads, saying it is for noobs. This is both correct and incorrect. Writing single threaded ransomware is easy. Writing fast ransomware (thread pools, queuing, I/O completion ports) that can both encrypt and decrypt successfully regardless of file type and file size can be challenging.
- Anyone who references Mr. Robot when discussing malware.
Forwarded from vx-underground
vx-underground
Mildly irritating things seen by malware nerds: - Person saying {thing} evades EDR and/or AV, but they've never performed against an enterprise environment with an active Blue Team (they don't know what they're talking about). Yes, your payload avoided basicβ¦
People need to seriously stop dissing Blue Team nerds. If you've ever tried to deploy malware against an enterprise network with an active Blue Team with software restriction policies, path-based execution restriction, a team that has an effective and up-to-date EDR (custom detection rules) coupled with an AV, and an active SOC..... it can be extremely challenging.
These Blue Team nerds are not dummies and they take their job extremely seriously
These Blue Team nerds are not dummies and they take their job extremely seriously
Is AI make programmer Illiterate?
Anonymous Poll
25%
Yeah, make the kid lazy read doc even write one.
10%
No, it help me skip redudant task like DAO, DTO, etc.
10%
With AI or not, I am still bloody stupid in compsci-related stuff.
0%
Whos care ? I have Nvidia, Intel and Amd stock, they just roundabout dividend.
40%
I'm cat Woo-Miaow
15%
Tommorow Valentine, dont go outside.
Forwarded from (Ο (ΞΌ (Ξ»)))
We have seen that computer programming is an art, because it applies accumulated knowledge to the world, because it requires skill and ingenuity, and especially because it produces objects of beauty. Programmers who subconsciously view themselves as artists will enjoy what they do and will do it better.
Donald Knuth, from "Computer Programming as an Art" (1974) in Literate Programming (1992)
Donald Knuth, from "Computer Programming as an Art" (1974) in Literate Programming (1992)
Compsci Library π pinned Β«https://startacomputer.club/ Interesting guide to start computer club IRLΒ»
https://web.mit.edu/6.001/6.037/sicp.pdf
Structure and Interpretation of Computer Programs a.k.a "The Wizard Book"
Harold Abelson, Gerald Jay Sussman, Julie Sussman
Structure and Interpretation of Computer Programs a.k.a "The Wizard Book"
Harold Abelson, Gerald Jay Sussman, Julie Sussman
Forwarded from vx-underground
Someone has done an excellent job collecting RATs and documenting them by version. They also included images.
A+ work. This is amazing (we're going to ingest this eventually)
https://github.com/Cryakl/Ultimate-RAT-Collection
A+ work. This is amazing (we're going to ingest this eventually)
https://github.com/Cryakl/Ultimate-RAT-Collection
GitHub
GitHub - Cryakl/Ultimate-RAT-Collection: For educational purposes only, exhaustive samples of 500+ classic/modern trojan buildersβ¦
For educational purposes only, exhaustive samples of 500+ classic/modern trojan builders including screenshots. - Cryakl/Ultimate-RAT-Collection
Forwarded from vx-underground
vx-underground
Someone has done an excellent job collecting RATs and documenting them by version. They also included images. A+ work. This is amazing (we're going to ingest this eventually) https://github.com/Cryakl/Ultimate-RAT-Collection
Holy cow, this dude is cookin'. How do we hire this guy?
https://github.com/Cryakl/Ransomware-Database
https://github.com/Cryakl/Ransomware-Database
GitHub
GitHub - Cryakl/Ransomware-Database: For educational purposes only, samples of ransomware/wiper trojans including screenshots/ransomβ¦
For educational purposes only, samples of ransomware/wiper trojans including screenshots/ransom-notes. - GitHub - Cryakl/Ransomware-Database: For educational purposes only, samples of ransomware/w...