In this stream Xusheng Li from Vector35 walks us through Time Travel Debugging in Binary Ninja which we use to unpack malware and analyze its anti-analysis capabilities.

Learn how to reverse engineer malware: https://training.invokere.com/
Twitch: https…

Are you looking for an automated way to find bugs in your code? In this course, you'll learn how to use AFL++ to test and identify vulnerabilities, leveraging a white-box approach to make your testing more efficient and targeted. By the end, you'll be ready…

The Setup I decided to setup a VNC honeypot. My goal was to essentially spin up an Ubuntu server and configure it in such a way, where when someone connected, it would start a recording of the active VNC session, and once disconnected, would save that recording…

Providing security research and red team techniques

Table of Contents:1. Importance of Initial Access in 20252. Introduction to 365-Stealer3. Understanding Illicit Consent Grant Attacks • Scenario: ECorp vs. PentestCorp • Why This Attack Is So Dangerous for ECorp4. The 365-Stealer Tool: Features and…

Write an awesome description for your new site here. You can edit this line in _config.yml. It will appear in your document head meta (for Google search results) and in your feed.xml site description.

Dive into research on a double-free vulnerability, CVE-2019-11932, in an image processing library used by WhatsApp and a GIF-processing vulnerability affecting Android mobile phones.

Our telemetry shows a surge in Windows shortcut (LNK) malware use. We explain how attackers exploit LNK files for malware delivery. Our telemetry shows a surge in Windows shortcut (LNK) malware use. We explain how attackers exploit LNK files for malware delivery.

This blog post will dive into the world of some of the recently published potato techniques that can lead to more serious risks than

If the United States wishes to compete in cyberspace, it must compete against China to secure its offensive cyber supply chain.

Call, Crash, Repeat WhatsApp Hacking @datalocaltmp

Good morning! In today’s blog post we’re going to dive into a topic that has interested me for quite some time, the Windows kernel pool. It’s a topic that tends to have “scarce” documentation online and can be somewhat intricate. That’s precisely why it has…

Diving into the MS-RPC protocol and how to automate vulnerability research using a fuzzing approach.

my first CVE - my first kCTF

MCP for Joe Sandbox Cloud. Contribute to joesecurity/joesandboxMCP development by creating an account on GitHub.