🌐 "WebPalm: Unleash Website Secrets for Cybersecurity!" 🌐

🔎 Discover WebPalm : Unleash Website Secrets! 🌐
Attention Cybersecurity Enthusiasts! 🛡️
Introducing WebPalm, the powerful command-line tool that unlocks the hidden treasures of websites! 🕵️‍♂️ Traverse websites, create a complete tree of webpages and links, and explore their interconnectedness like never before.
🔍 Extract Data with Ease: WebPalm can use regular expressions to extract data from webpage bodies, perfect for web scraping and gathering valuable information.
🚀 Fast and Reliable: Enjoy a seamless experience with lightning-fast performance and colorized output for easy error handling.
Join the exploration at:webpalm
Unleash the potential of WebPalm responsibly and dive into the fascinating world of website secrets! 🌟
🗣Adventurous_Dance527


🎖@malwr

Within incident response, who are the people who actually analyze/reverse the malware sample?
Unfamiliar with the process, but was looking to learn some new skills soon.
🗣HalfQuarter1250

Well anyone with skill, the role doesn't meters and it all depends ofc on complexity. I would say that such specific role is needed only if reversing is done on daily basis... but I would find that hard to believe unless the company is focused on RM. Most of companies, I would assume have analysts that have a strong and weak sides and they do multiple various tasks base on them...It's similar to programmers...some do frontend some to backend programming, some do both - in cyber is just a little more devided by skillet
👤4n6mole

Not to detract from the conversation, but I couldn’t help but notice that nobody has mentioned that in many cases identifying malicious files and code can be performed by several tools specifically designed to analyze payloads and detonate them in a sandboxed environments.

As others have mentioned out side of an AV company or perhaps a larger enterprise/agency, these tools can fill in as “good enough” solutions for budget conscious organizations.

Virus Total.
Any.Run
OPSWAT FileScan.
and a handful of other services with analysis and TI built right in.
👤Missing_Space_Cadet

Some people hire 3rd party malware analyst. Crowdstrike, red canary, mandiant are some examples of these service providers who will bill you either by the hour or per sample.

Some bigger companies have incident responders who specialize in malware analysis so that the same person responding to the incident is also capable of doing the analysis. Some companies also have an entire team that specializes in malware analysis. This team may also include software engineers who develop internal tools to help conduct and facilitate such analysis.

I've worked as a security engineer for companies that span across all of the above
👤_xpendable_


🎖@malwr

AMD 'Zenbleed' Bug Leaks Data From Zen 2 Ryzen, EPYC CPUs: Most Patches Coming Q4
🗣PsyOmega

Netsec used to be ahead of the curve. This is like a 6 or 8 day old vuln now. Fall from grace.
👤Lumpzor

I wonder if the fixes drop performance like spectre? The article speculates but actual testing numbers will be interesting.
👤demunted


🎖@malwr

📍📍📍Forward posts to the other groups 📍📍📍

Russian organised crime and Ransomware as a Service: state cultivated cybercrime - masters thesis from October 22 - posted July 23
🗣digicat

Hey I just wanted to let you know your newsletters are being blocked by trellix as malicious and unreleaseable for the past few weeks.
👤R1skM4tr1x


🎖@malwr