HID Attack using 1.5$ Arduino Rubber Ducky-ish
π£jithins1610
A lot of people donβt trust these cause the price but theyβre a charm and so. Much. God. Damn. Fun.
π€maximus1218
Pro tip though, get several Digisparks. Thereβs probably a 20% chance they wonβt work
π€mcbergstedt
The dollar sign goes first
π€LegitimateCrepe
π@malwr
π£jithins1610
A lot of people donβt trust these cause the price but theyβre a charm and so. Much. God. Damn. Fun.
π€maximus1218
Pro tip though, get several Digisparks. Thereβs probably a 20% chance they wonβt work
π€mcbergstedt
The dollar sign goes first
π€LegitimateCrepe
π@malwr
YouTube
Digispark Rubber Ducky | Arduino Rubber Ducky | HID Attack-Digispark USB Keyboard
Arduino Rubber Ducky using Digispark | Digispark HID Keyboard | HID Attack on a PC - In this video, I will show you how to hack a computer using Arduino HID ...
10 Years of Linux Security - A Report Card
π£citypw
Keep in mind that grsecurity's business model relies on painting Linux, and in particular Linux security, in a negative light.
I'm not saying that makes any of this information invalid by itself, but it's worth considering the source.
π€awkisopen
I see words in that PDF but barely understand anything it's saying. Context is key.
This was clearly written by an engineer who had no idea whether or not the audience would understand the presentation.
π€ToasterToasts
Well, that could have benefited from some explanation of acronyms.
Most of the recommendations seemed to be process or attitude things. How about recommending some simplification, throwing away old code even if it still mostly works ? I'm mostly talking about user-space code. Could we get rid of the init structure and commit to systemd ? Get rid of some old encryption and hashing and VPN modules, force people onto the new stuff ? Have DNS specified in 1 place instead of 5 ?
π€billdietrich1
π@malwr
π£citypw
Keep in mind that grsecurity's business model relies on painting Linux, and in particular Linux security, in a negative light.
I'm not saying that makes any of this information invalid by itself, but it's worth considering the source.
π€awkisopen
I see words in that PDF but barely understand anything it's saying. Context is key.
This was clearly written by an engineer who had no idea whether or not the audience would understand the presentation.
π€ToasterToasts
Well, that could have benefited from some explanation of acronyms.
Most of the recommendations seemed to be process or attitude things. How about recommending some simplification, throwing away old code even if it still mostly works ? I'm mostly talking about user-space code. Could we get rid of the init structure and commit to systemd ? Get rid of some old encryption and hashing and VPN modules, force people onto the new stuff ? Have DNS specified in 1 place instead of 5 ?
π€billdietrich1
π@malwr
ARMRef (ARMv8.5 assembly reference app)
π£_evilpenguin
Sadly no Android support
π€KrieghofGames
π@malwr
π£_evilpenguin
Sadly no Android support
π€KrieghofGames
π@malwr
GitHub
GitHub - evilpenguin/ARMRef: ARM Assembly Reference Manual for iOS, iPadOS, and macOS.
ARM Assembly Reference Manual for iOS, iPadOS, and macOS. - GitHub - evilpenguin/ARMRef: ARM Assembly Reference Manual for iOS, iPadOS, and macOS.
The analyzer automates the process of exploring EFI files. After the analysis, well-known protocols, interrupts, etc. are found.
https://github.com/DSecurity/efiSeek
π@malwr
https://github.com/DSecurity/efiSeek
π@malwr
GitHub
GitHub - DSecurity/efiSeek: Ghidra analyzer for UEFI firmware.
Ghidra analyzer for UEFI firmware. Contribute to DSecurity/efiSeek development by creating an account on GitHub.
A buggy behavior located into CreateFile allows to hide malware from users and AV scanners. Microsoft will not fix it:
https://github.com/dalvarezperez/CreateFile_based_rootkit
#CreateFile #malware #rootkit #antivirus
βΉοΈ Sent from one of our members
π@malwr
https://github.com/dalvarezperez/CreateFile_based_rootkit
#CreateFile #malware #rootkit #antivirus
βΉοΈ Sent from one of our members
π@malwr
GitHub
GitHub - dalvarezperez/CreateFile_based_rootkit
Contribute to dalvarezperez/CreateFile_based_rootkit development by creating an account on GitHub.
Windows Process Injection: EM_GETHANDLE, WM_PASTE and EM_SETWORDBREAKPROC
π£digicat
Can i have the name or twitter handle of the owner of this blog they do an amazing job
π€hilo25
https://twitter.com/modexpblog
π€digicat
π@malwr
π£digicat
Can i have the name or twitter handle of the owner of this blog they do an amazing job
π€hilo25
https://twitter.com/modexpblog
π€digicat
π@malwr
modexp
Windows Process Injection: EM_GETHANDLE, WM_PASTE and EM_SETWORDBREAKPROC
Introduction Edit Controls Writing CP-1252 Compatible Code Initialization Set RAX to 0 Set RAX to 1 Set RAX to -1 Load and Store Data Two Byte Instructions Prefix Codes Generating Shellcode Injectiβ¦
Another method of bypassing ETW and Process Injection via ETW registration entries.
π£bm11100
π@malwr
π£bm11100
π@malwr
modexp
Another method of bypassing ETW and Process Injection via ETW registration entries.
Contents Introduction Registering Providers Locating the Registration Table Parsing the Registration Table Code Redirection Disable Tracing Further Research 1. Introduction This post briefly descriβ¦
Fuzzing sockets in Teeworlds game
π£logicaltrust-net
Never thought I'd see teeworlds here lol
π€MegaManSec2
π@malwr
π£logicaltrust-net
Never thought I'd see teeworlds here lol
π€MegaManSec2
π@malwr
Security Audits, Penetration Tests - LogicalTrust
LogicalTrust - [EN] A-Z: Introducing SocketInjectingFuzzer and its first target - Teeworlds
The idea behind Socket Injecting Fuzzer is simple - fuzz applications working in the client-server architecture by mutating real data packets that are exchanged by them in real usage scenarios. Implementation is also simple because it is based on hookingβ¦
[PDF ThaiCERT publishes "Threat Group Cards: A Threat Actor Encyclopedia" version 2.0 - Added 115 threat groups and many other updates - portal coming soon](https://www.dropbox.com/s/ds0ra0c8odwsv3m/Threat%20Group%20Cards.pdf?dl=0)
π£digicat
π@malwr
π£digicat
π@malwr
Dropbox
Threat Group Cards.pdf
Shared with Dropbox