After reading Alex’s latest article, I’m inspired to start a detection serie dedicated to Event Log manipulation techniques, with our first…

In this OALABS Patreon tutorial we cover the basics of YARA, what is it, how is it used, and how to write your first rule.

Full notes have been unlocked on our Patreon here
https://www.patreon.com/posts/introduction-to-96636471

-----
OALABS DISCORD
ht…

In my introductory post I had been talking about dynamic memory allocation and I referenced various solutions that are used to tackle this…

Join Didier Stevens and I (mostly him) talking about the footprints left behind when us red team folks utilize tools such as Cobalt Strike to infiltrate and set up command & control! This important information can help both blue and red, but for the red side…

Tutorial ini sekedar memperkenalkan cara memakai Ghidra dan IDA (baik pro maupun free). Tadinya saya hanya ingin membahas Ghidra saja, tapi karena saya juga belum pernah menulis tutorial IDA, jadi sekalian saja, sekaligus bisa dibandingkan langsung.



Perlu…

On Windows, named pipes are a form of interprocess communication (IPC) that allows processes to communicate with one another, both locally and across the network. Named pipes serve as a mechanism to transfer data between Windows components as well as third…

An automated Breach and Attack Simulation lab with terraform. Built for IaC stability, consistency, and speed. - iknowjason/AutomatedEmulation

Authors: Michael Kouremetis

SANS PenTest HackFest 2022

Speaker: Jean-François Maes, Certified Instructor, SANS Institute

In this presentation, Jean-Francois Maes will talk about shellcode loaders and some opsec considerations when dropping to disk + talk about some popular evasion…

Find approachable and high-value methods that can be used to hunt for malware infrastructure in this guest blog from Embee Research.

As seen in most security blog posts today, binary diffing tools are essential for reverse engineering, vulnerability research, and malware analysis. Patch diffing is a technique widely used to identify changes across versions of binaries as related to security…

Get OPSEC considerations for using Beacon with in-memory YARA scanning and learn a malleable C2 profile that gives robust evasion against such defensive techniques.

By Mike Dame & Daniel Purcell

Hands-on cybersecurity projects to enhance skills in phishing investigation, malware analysis, network intrusion detection, and DDoS attack response. - 0xrajneesh/Incident-Response-Projects-for-Beg...