The Windows Process Journey — conhost.exe (Console Window Host)

https://medium.com/@boutnaru/the-windows-process-journey-conhost-exe-console-window-host-f03f8db35574

#Windows #Microsoft #conhost #cmd #CLI #SBOM #DFIR #Learning #Forensics #IT #Tech #security #infosec #DevOps #DevSecOps #Console #TheWindowsProcessJourney
🗣boutnaru


🎖@malwr

Seeing more malware using binary padding for evasion and obfuscation?

Intezer security researcher @MhicRoibin explains how and why threat actors are inflating malware files with junk data, plus what you can do about it: https://hubs.li/Q01RRkPP0
🗣IntezerLabs


🎖@malwr

Zscaler's Mallikarjun Piddannavar presents a technical analysis of a new info stealer called Bandit Stealer, which has been marketed and sold as a service on underground criminal forums since April 2023. https://www.zscaler.com/blogs/security-research/technical-analysis-bandit-stealer
🗣virusbtn


🎖@malwr

CatSniffer is an original multiprotocol,& multiband board made for sniffing, communicating,& attacking IoT devices. That integrates the new chips CC1352, SX1262,& SAMD21E17 (Sub 1GHz & 2.4GHz).

https://github.com/ElectronicCats/CatSniffer

#SoftwareDefinedRAdio #SDR
#LoRa #LoRaWAN
#BLE #ZigBee
🗣giammaiot2


🎖@malwr

In a new blog post Trend Micro researchers discuss the latest TargetCompany ransomware variant, Xollam, and the new initial access technique it uses. https://www.trendmicro.com/en_us/research/23/f/xollam-the-latest-face-of-targetcompany.html
🗣virusbtn


🎖@malwr

A collection of bookmarks for penetration testers, bug bounty hunters, malware developers, reverse engineers and anyone who is just interested in infosec topics.

https://github.com/kargisimos/offensive-bookmarks
🗣Dinosn


🎖@malwr

[BLOG]
Bypassing Defender with ThreatCheck & Ghidra

https://offensivedefence.co.uk/posts/threatcheck-ghidra/
🗣_RastaMouse


🎖@malwr

strings2 - Extract strings from binary files and process memory https://github.com/glmcdona/strings2
🗣reverseame


🎖@malwr

For those who are encountering Golang malware (which are likely to be more and more of you as they language gains in popularity): the Ghidra scripts I made to help analyse Golang binaries in Ghidra are now public, along with a corporate blog diving into the details. The code itself is (if I may say so myself) very well documented. As such, if you push you Java hate aside, it's a knowledge base in and on its own.

Blog: https://www.trellix.com/en-us/about/newsroom/stories/research/feeding-gophers-to-ghidra.html

GitHub: https://github.com/advanced-threat-research/GhidraScripts

ℹ️ Sent from one of our channel members

🎖@malwr

RedLine Technical Analysis Report

https://apophis133.medium.com/redline-technical-analysis-report-5034e16ad152

ℹ️ Sent from one of our channel members

🎖@malwr

The latest blog post from http://Sekoia.io's TDR researchers aims at understanding & contextualising cyber malicious activities associated with Iran-nexus intrusions sets over the 2022-2023 period. https://blog.sekoia.io/iran-cyber-threat-overview/
🗣virusbtn


🎖@malwr

Abusing undocumented features to spoof PE section headers by @x86matthew https://secret.club/2023/06/05/spoof-pe-sections.html
🗣the_secret_club


🎖@malwr

IBM Security X-Force researchers show how ITG10 is likely targeting South Korean government entities, universities, think tanks and dissidents with phishing emails in order to deliver RokRAT via LNK files. https://securityintelligence.com/posts/itg10-targeting-south-korean-entities/
🗣virusbtn


🎖@malwr

Stealth Soldier Backdoor Used in Targeted Espionage Attacks in North Africa https://research.checkpoint.com/2023/stealth-soldier-backdoor-used-in-targeted-espionage-attacks-in-north-africa/
🗣Dinosn


🎖@malwr

https://cocomelonc.github.io/malware/2023/06/07/syscalls-1.html my intro to syscalls. I love introductory posts =^..^= #cybersec #cybersecurity #informationsecurity #malware #malwaredev #malwareanalysis #redteam #blueteam #purpleteam #hacking #ethicalhacking #windows #winapi #win32api #programming #cpp #assembly #asm
🗣cocomelonckz


🎖@malwr

Digital Forensics Tools Cheat Sheet

📷Full HD Image: https://github.com/Ignitetechnologies/Mindmap/tree/main/Forensics

#infosec #cybersecurity #cybersecuritytips #pentesting #redteam #informationsecurity #CyberSec #networking #networksecurity #infosecurity #cyberattacks #cybersecurityawareness #bugbounty #bugbountytips
🗣hackinarticles


🎖@malwr