Fuzzing Android binaries using AFL++ Frida Mode
https://valsamaras.medium.com/fuzzing-android-binaries-using-afl-frida-mode-57a49cf2ca43
https://valsamaras.medium.com/fuzzing-android-binaries-using-afl-frida-mode-57a49cf2ca43
Medium
Fuzzing Android binaries using AFL++ Frida Mode
You might find this to be a fitting prologue to my earlier post on Creating and using JVM instances in Android C/C++ applications… and you…
Order of Six Angles
блог https://r00tkitsmm.github.io/
POC
CVE-2024-27804, an iOS/macOS kernel vulnerability that leads to the execution of arbitrary code with kernel privileges
https://r00tkitsmm.github.io/fuzzing/2024/05/14/anotherappleavd.html
CVE-2024-27804, an iOS/macOS kernel vulnerability that leads to the execution of arbitrary code with kernel privileges
https://r00tkitsmm.github.io/fuzzing/2024/05/14/anotherappleavd.html
My interesting research.
CVE-2024-27804 Vulnerability in AppleAVD
https://github.com/R00tkitSMM/CVE-2024-27804
Malware Development: Crafting Digital Chaos 0x0: Basics
https://ry0dan.github.io/malware%20development/Malware-Development-Crafting-Digital-Chaos-01/
https://ry0dan.github.io/malware%20development/Malware-Development-Crafting-Digital-Chaos-01/
Motawkkel Abdulrhman [ry0d4n]
Malware Development: Crafting Digital Chaos 0x0: Basics
Article 1 of Malware Development series
Code to create a heat map of the Russian GPS jammer in Kaliningrad affecting the Baltics (Poland, Latvia, Lithuania, Estonia and Finland).
https://github.com/alphabbett/BalticsRussiaGPSjammer
https://github.com/alphabbett/BalticsRussiaGPSjammer
GitHub
GitHub - alphabbett/BalticsRussiaGPSjammer: Code to create a heat map of the Russian GPS jammer in Kaliningrad affecting the Baltics…
Code to create a heat map of the Russian GPS jammer in Kaliningrad affecting the Baltics (Poland, Latvia, Lithuania, Estonia and Finland). - alphabbett/BalticsRussiaGPSjammer
Risky Business #748 -- New cyber rules for US healthcare are coming (подкаст)
https://risky.biz/RB748/
https://risky.biz/RB748/
risky.biz
Risky Business #748 -- New cyber rules for US healthcare are coming - Risky Business
Leveraging macOS's Networking Frameworks to Heuristically Detect Malware (презентация)
Кратко - программно анализировать коннекты чисто на хосте
https://speakerdeck.com/patrickwardle/nothing-but-net-leveraging-macoss-networking-frameworks-to-heuristically-detect-malware
Кратко - программно анализировать коннекты чисто на хосте
https://speakerdeck.com/patrickwardle/nothing-but-net-leveraging-macoss-networking-frameworks-to-heuristically-detect-malware
Speaker Deck
Nothing but Net: Leveraging macOS's Networking Frameworks to Heuristically Detect Malware
As the majority of malware contains networking capabilities, it is well understood that detecting unauthorized network access is a powerful detection he…
Интересные курсы нашел, цена привлекательная ($450), незнаю насколько они хороши.
MCD - Certified Code Deobfuscation Specialist
MVRE - Certified Vulnerability Researcher and Exploitation Specialist
MCD - Certified Code Deobfuscation Specialist
MVRE - Certified Vulnerability Researcher and Exploitation Specialist
Еще хочу в ближайшем будущем пройти лабы от Xintra. Это лабы симулирующие атаку популярных АПТ группировок. Цена адекватная (45 баксов в месяц).
https://www.xintra.org/labs
https://www.xintra.org/labs
Mobile Malware Analysis Part 1 – Leveraging Accessibility Features to Steal Crypto Wallet
https://8ksec.io/mobile-malware-analysis-part-1-crypto-wallet-stealer/
https://8ksec.io/mobile-malware-analysis-part-1-crypto-wallet-stealer/
DFIR Labs CTF: May 19, 17:00-21:00 UTC
https://the-dfir-report-store.myshopify.com/products/dfir-labs-ctf-may-19-17-00-21-00-utc
https://the-dfir-report-store.myshopify.com/products/dfir-labs-ctf-may-19-17-00-21-00-utc
JS-Tap is a tool intended to help red teams attack web applications.
https://trustedsec.com/blog/js-tap-mark-ii-now-with-c2-shenanigans
https://trustedsec.com/blog/js-tap-mark-ii-now-with-c2-shenanigans
TrustedSec
JS-Tap Mark II: Now with C2 Shenanigans
An Event Tracing for Windows (ETW) tool that allows you to enumerate Manifest & MOF providers, as well as collect events from desired providers.
https://github.com/jsecurity101/ETWInspector
https://github.com/jsecurity101/ETWInspector
GitHub
GitHub - jonny-jhnson/ETWInspector
Contribute to jonny-jhnson/ETWInspector development by creating an account on GitHub.
Operation Triangulation: Attacks On IPhones/iPads - Marco Preuss
https://www.youtube.com/watch?v=xt6z4zExFII
https://www.youtube.com/watch?v=xt6z4zExFII
YouTube
Operation Triangulation: Attacks On IPhones/iPads - Marco Preuss