Unpacking Bosch Surveillance Camera Firmware
🗣anvilventures
Very nice and detailed guide of what he did, the GitHub tool is a nice touch as well, found it quite an interesting read - now that it’s unpacked can you find vulnerabilities? :)
👤rathaus
🎖@malwr
🗣anvilventures
Very nice and detailed guide of what he did, the GitHub tool is a nice touch as well, found it quite an interesting read - now that it’s unpacked can you find vulnerabilities? :)
👤rathaus
🎖@malwr
Anvil Ventures
Unpacking Bosch Surveillance Camera Firmware - Anvil Ventures
While looking for new devices to perform reverse engineering on, I became interested in Bosch’s FlexiDome line of cameras, specifically the FlexiDome 7000, a day/night surveillance camera. This blog post demonstrates how I reverse engineered the firmware…
Malware News pinned «Do you want to share your researches here? Ping me: @SirMalware 🎖@malwr»
New 9.8 CVE for Juniper Junos OS - remote code execution.
ohhhh boy, this a big one.
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11034
Good luck, teams!
🗣sloth_on_meth
🎖@malwr
ohhhh boy, this a big one.
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11034
Good luck, teams!
🗣sloth_on_meth
🎖@malwr
reddit
New 9.8 CVE for Juniper Junos OS - remote code execution.
ohhhh boy, this a big one. https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11034 Good luck, teams!
bddisasm - fast and lightweight cross platform x86/x64 instruction decoder and shellcode emulator (more than 7M instructions decoded per second)
🗣bogdannumaprind
🎖@malwr
🗣bogdannumaprind
🎖@malwr
GitHub
GitHub - bitdefender/bddisasm: bddisasm is a fast, lightweight, x86/x64 instruction decoder. The project also features a fast…
bddisasm is a fast, lightweight, x86/x64 instruction decoder. The project also features a fast, basic, x86/x64 instruction emulator, designed specifically to detect shellcode-like behavior. - bitd...
IoT Digital Forensics Course by R. Jean Costello | A free IoT Forensics course, including hands-on labs
🗣LordUlthar
🎖@malwr
🗣LordUlthar
🎖@malwr
GitHub
GitHub - RJC497/IoT-Digital-Forensics-Course: IoT Digital Forensics Course with hands-on labs
IoT Digital Forensics Course with hands-on labs. Contribute to RJC497/IoT-Digital-Forensics-Course development by creating an account on GitHub.
Chinese APT group targets India and Hong Kong using new variant of MgBot malware
https://blog.malwarebytes.com/threat-analysis/2020/07/chinese-apt-group-targets-india-and-hong-kong-using-new-variant-of-mgbot-malware/
🗣digicat
🎖@malwr
https://blog.malwarebytes.com/threat-analysis/2020/07/chinese-apt-group-targets-india-and-hong-kong-using-new-variant-of-mgbot-malware/
🗣digicat
🎖@malwr
Extending the Exploration and Analysis of Windows RPC Methods Calling other Functions with Ghidra 🐉, Jupyter Notebooks 📓 and Graphframes 🔗!
🗣digicat
🎖@malwr
🗣digicat
🎖@malwr
Medium
Extending the Exploration and Analysis of Windows RPC Methods Calling other Functions with Ghidra 🐉, Jupyter Notebooks 📓 and Graphframes…
A few weeks ago, I was going over some of the research topics in my to-do list, and the one that sounded interesting to work on during 4th…
Looking to learn more about VM on the cheap? Here's a comparison of the top free Vulnerability Assessment tools
🗣adrownedcoast
Nice article, thanks.
I would have honestly mentioned flanscan, which is basically a wrapper around Nmap and vulners, rather than Nmap and/or Tsunami.
OpenVAS is a nice tool, but oh boy how painful it is to interact with it.
👤Sudneo
Not sure if anyone is interested but we did a video some time ago on vulnerability assessment.
👤FLSecAdm
🎖@malwr
🗣adrownedcoast
Nice article, thanks.
I would have honestly mentioned flanscan, which is basically a wrapper around Nmap and vulners, rather than Nmap and/or Tsunami.
OpenVAS is a nice tool, but oh boy how painful it is to interact with it.
👤Sudneo
Not sure if anyone is interested but we did a video some time ago on vulnerability assessment.
👤FLSecAdm
🎖@malwr
Medium
The Top Free Vulnerability Assessment Tools of 2020
If you’re looking to learn more about VM on the cheap, look no further
Intercepting and manipulating online game’s traffic
https://medium.com/@gosebam/intercepting-and-manipulating-online-games-traffic-4aa6c18af7b5
ℹ️ Sent from one of our members
🎖@malwr
https://medium.com/@gosebam/intercepting-and-manipulating-online-games-traffic-4aa6c18af7b5
ℹ️ Sent from one of our members
🎖@malwr
Medium
Intercepting and manipulating online game’s traffic
Have you ever wondered how do online games work? How do hacks and trainers work? In this article, I show how to intercept and manipulate…
Analysing Fileless Malware: Cobalt Strike Beacon
🗣Paul_Sec
Great write-up, the section on quick shellcode analysis is extra useful!
👤ComputerPizza
🎖@malwr
🗣Paul_Sec
Great write-up, the section on quick shellcode analysis is extra useful!
👤ComputerPizza
🎖@malwr
On The Hunt
Analysing Fileless Malware: Cobalt Strike Beacon - On The Hunt
This post looks at analysing fileless malware, specifically a Cobalt Strike Beacon injected into memory via a PowerShell script.