Z80 Explorer -- Zilog Z80 netlist-level simulator running Z80 machine code, with features that can help reverse-engineer and understand this chip better
π£r_retrohacking_mod2
This is fantastic stuff!
I can see uses for this with my own work, indeed.
π€heriomortis
There are also other interesting Z80 articles on that site.
π€r_retrohacking_mod2
π@malwr
π£r_retrohacking_mod2
This is fantastic stuff!
I can see uses for this with my own work, indeed.
π€heriomortis
There are also other interesting Z80 articles on that site.
π€r_retrohacking_mod2
π@malwr
Baltazar Studios
Z80 Explorer - Baltazar Studios
Z80 Explorer is a Z80 netlist-level simulator capable of running Z80 machine code and also an educational tool with features that help reverse engineer and understand this chip better.
Process Monitor for Linux (Preview)
Process Monitor (Procmon) is a Linux reimagining of the classic Procmon tool from the Sysinternals suite of tools for Windows. Procmon provides a convenient and efficient way for Linux developers to trace the syscall activity on the system.
https://github.com/microsoft/ProcMon-for-Linux
https://i.redd.it/d8qkly8c9hb51.gif
π£r00tsuz
π@malwr
Process Monitor (Procmon) is a Linux reimagining of the classic Procmon tool from the Sysinternals suite of tools for Windows. Procmon provides a convenient and efficient way for Linux developers to trace the syscall activity on the system.
https://github.com/microsoft/ProcMon-for-Linux
https://i.redd.it/d8qkly8c9hb51.gif
π£r00tsuz
π@malwr
GitHub
GitHub - microsoft/ProcMon-for-Linux: A Linux version of the Procmon Sysinternals tool
A Linux version of the Procmon Sysinternals tool. Contribute to microsoft/ProcMon-for-Linux development by creating an account on GitHub.
The Pwning Machine β a new bug bounty testing environment from YesWeHack
π£breach_house
π@malwr
π£breach_house
π@malwr
The Daily Swig | Cybersecurity news and views
The Pwning Machine β a new bug bounty testing environment from YesWeHack
Docker-based suite includes a DNS server, HTTP router, web server, and pipeline runner
What was the Bitcoin Twitter hack?
The Bitcoin scam saw dozens of high-profile accounts send tweets urging users to transfer $1,000 (Β£794) with a link to a Bitcoin address.
In return, users were promised that their money would be doubled to $2,000 and returned to them.
Bitcoin, often termed as a cryptocurrency, a virtual currency or a digital currency, is a type of money that is completely virtual.
The hackers tweeted the same Bitcoin address across multiple Twitter accounts, with only minor variations to the wording of each tweet, such as saying they felt βgenerousβ or wanted to βgive backβ.
A tweet on the account of Microsoft founder Bill Gates, for example, read: "Everyone is asking me to give back⦠You send $1,000, I send you back $2,000."
As Twitter bosses scrambled to stop the far-reaching hack, extraordinarily by 20:30 EDT (00:30 GMT Thursday) every verified account was blocked from tweeting for around three hours.
π£Incognito1805G
Who was targeted?
A lot of people, with millions and millions of followers, most of them US-based.
Billionaires Elon Musk, Jeff Bezos and Bill Gates, to name a few, along with Warren Buffett, Kanye West, Kim Kardashian, Joe Biden, Wiz Khalifa and Floyd Mayweather.
Top global corporations with millions of followers were also breached, including the official accounts of Apple and Uber.
The hacker(s) appears to have targeted very famous accounts that would spread the scam as far as possible in as short a timeframe as possible, dubbed a digital βsmash and grabβ by some commentators.
Given the amount of access they managed to gain, the hackers could have done much more damage to the reputations of the figures involved. However, they would have known the tweets would have been deleted hastily - and they were - so gaining quick cash seems to have been the overriding aim.
That said, the Bitcoin tweets on some accounts, such as Kim Kardashian's, stayed up for more than an hour and we donβt know yet how much private information the hackers managed to steal.
As of yet, itβs unclear who was responsible, however, sources close to or inside the hacking community told VICE that a Twitter insider was responsible, with one saying they paid the insider. These reports are unconfirmed.
What has Twitter said in response to the security breach?
The attention has quickly turned to Twitter, given it seems likely that the hackers breached the firmβs central security systems, essentially giving them admin rights to go after any account they wanted.
π€Incognito1805G
π@malwr
The Bitcoin scam saw dozens of high-profile accounts send tweets urging users to transfer $1,000 (Β£794) with a link to a Bitcoin address.
In return, users were promised that their money would be doubled to $2,000 and returned to them.
Bitcoin, often termed as a cryptocurrency, a virtual currency or a digital currency, is a type of money that is completely virtual.
The hackers tweeted the same Bitcoin address across multiple Twitter accounts, with only minor variations to the wording of each tweet, such as saying they felt βgenerousβ or wanted to βgive backβ.
A tweet on the account of Microsoft founder Bill Gates, for example, read: "Everyone is asking me to give back⦠You send $1,000, I send you back $2,000."
As Twitter bosses scrambled to stop the far-reaching hack, extraordinarily by 20:30 EDT (00:30 GMT Thursday) every verified account was blocked from tweeting for around three hours.
π£Incognito1805G
Who was targeted?
A lot of people, with millions and millions of followers, most of them US-based.
Billionaires Elon Musk, Jeff Bezos and Bill Gates, to name a few, along with Warren Buffett, Kanye West, Kim Kardashian, Joe Biden, Wiz Khalifa and Floyd Mayweather.
Top global corporations with millions of followers were also breached, including the official accounts of Apple and Uber.
The hacker(s) appears to have targeted very famous accounts that would spread the scam as far as possible in as short a timeframe as possible, dubbed a digital βsmash and grabβ by some commentators.
Given the amount of access they managed to gain, the hackers could have done much more damage to the reputations of the figures involved. However, they would have known the tweets would have been deleted hastily - and they were - so gaining quick cash seems to have been the overriding aim.
That said, the Bitcoin tweets on some accounts, such as Kim Kardashian's, stayed up for more than an hour and we donβt know yet how much private information the hackers managed to steal.
As of yet, itβs unclear who was responsible, however, sources close to or inside the hacking community told VICE that a Twitter insider was responsible, with one saying they paid the insider. These reports are unconfirmed.
What has Twitter said in response to the security breach?
The attention has quickly turned to Twitter, given it seems likely that the hackers breached the firmβs central security systems, essentially giving them admin rights to go after any account they wanted.
π€Incognito1805G
π@malwr
Reddit
From the Hacking_Tutorials community on Reddit: What was the Bitcoin Twitter hack?
Posted by Incognito1805G - 8 votes and 2 comments
Procmon is a Linux reimagining of the classic Procmon tool from the Sysinternals suite of tools for Windows. Procmon provides a convenient and efficient way for Linux developers to trace the syscall activity on the system.
π£digicat
Microsoft have made Procmon for Linux... what a time to be alive
π€TheAlphaBravo
π@malwr
π£digicat
Microsoft have made Procmon for Linux... what a time to be alive
π€TheAlphaBravo
π@malwr
GitHub
GitHub - microsoft/ProcMon-for-Linux: A Linux version of the Procmon Sysinternals tool
A Linux version of the Procmon Sysinternals tool. Contribute to microsoft/ProcMon-for-Linux development by creating an account on GitHub.
CAPA - FireEye
π£deadbroccoli
>CAPA detects capabilities in executable files. You run it against a PE file or shellcode and it tells you what it thinks the program can do. For example, it might suggest that the file is a backdoor, is capable of installing services, or relies on HTTP to communicate.
π€deadbroccoli
π@malwr
π£deadbroccoli
>CAPA detects capabilities in executable files. You run it against a PE file or shellcode and it tells you what it thinks the program can do. For example, it might suggest that the file is a backdoor, is capable of installing services, or relies on HTTP to communicate.
π€deadbroccoli
π@malwr
GitHub
GitHub - mandiant/capa: The FLARE team's open-source tool to identify capabilities in executable files.
The FLARE team's open-source tool to identify capabilities in executable files. - mandiant/capa
Eset discovered a new operation within a long-running cyber-espionage campaign in the Middle East. Targeting Android users via the malicious Welcome Chat app, the op appears to have links to the malware named BadPatch, which MITRE links to the Gaza Hackers threat actor group known also as MoleRats
π£digicat
π@malwr
π£digicat
π@malwr
WeLiveSecurity
Welcome Chat as a secure messaging app? Nothing could be further from the truth
ESET research uncovers a malicious operation that spies on Android users via Welcome Chat, an app posing as a secure chat service available in Google Play.
serpentine - Windows RAT (Remote Administration Tool) with a multiplatform RESTful C2 server
π£jafarlihi
It's great that the client is in C++, but the Java server is a deal breaker.
π€PhisherPrice
I always knew RAT as βRemote Access Trojanβ
π€Wiamly
π@malwr
π£jafarlihi
It's great that the client is in C++, but the Java server is a deal breaker.
π€PhisherPrice
I always knew RAT as βRemote Access Trojanβ
π€Wiamly
π@malwr
Mobile phone data extraction by police forces in England and Wales: Investigation report - Information Commissioner's Office | This will be required reading for anyone applying for DF jobs in UK LEAs in the next few months. Almost guaranteed to be mentioned in interviews.
π£LordUlthar
Thanks for sharing! It's very informative.
π€happyredditgifts
π@malwr
π£LordUlthar
Thanks for sharing! It's very informative.
π€happyredditgifts
π@malwr
Masking Malicious Memory Artifacts Part II: Insights from Moneta
π£digicat
Part 1β£: https://www.forrest-orr.net/post/malicious-memory-artifacts-part-i-dll-hollowing
π@malwr
π£digicat
Part 1β£: https://www.forrest-orr.net/post/malicious-memory-artifacts-part-i-dll-hollowing
π@malwr
ForrestOrr
Masking Malicious Memory Artifacts β Part II: Blending in with False Positives
IntroductionWith fileless malware becoming a ubiquitous feature of most modern Red Teams, knowledge in the domain of memory stealth and detection is becoming an increasingly valuable skill to add to both an attacker and defenderβs arsenal. Iβve written thisβ¦
Booting to 'Hello Rust' on x86_64
π£micouy
Author here. It's my first post and I'd really appreciate your feedback. If you have any questions, you can comment here, DM me or send me an email. Thanks for reading :)
π€micouy
π@malwr
π£micouy
Author here. It's my first post and I'd really appreciate your feedback. If you have any questions, you can comment here, DM me or send me an email. Thanks for reading :)
π€micouy
π@malwr