Source Byte

MikroTik router reverse engineering (SOHO, embedded/IoT devices) Excellent writeup by @hgarrereyn and @__comedian https://margin.re/2022/06/pulling-mikrotik-into-the-limelight/ Slides (RECon)

Elevate process privileges to the System or Trustedinstaller Link #malware_dev #windows ------- @islemolecule_source

Microsoft has observed a subset of Iran-based threat actor Mint Sandstorm (PHOSPHORUS) employing new TTPs to improve initial access, defense evasion, and persistence in campaigns targeting individuals at universities and research orgs. https://www.microsoft.com/en-us/security/blog/2024/01/17/new-ttps-observed-in-mint-sandstorm-campaign-targeting-high-profile-individuals-at-universities-and-research-orgs/ #TTP , #red_team ——— @islemolecule_source

Understanding x86_64 Paging Link #internals #windows ------ @islemolecule_source

Malware repository Link #malware_analysis @islemolecule_source

Amazing tool for anyone interested in mobile & malware security… kaspersky has released iShutdown, a collection of Python scripts that can detect various strains of iOS #spyware, such as #Pegasus, #Predator, and #Reign. https://github.com/KasperskyLab/iShutdown #tool ——— @islemolecule_source

Is remote code execution in UEFI firmware possible? Yes it is. Meet #PixieFAIL: 9 vulnerabilities in the IPv6 stack of EDK II, the open source UEFI implementation used by billions of computers. credit : @fdfalcon & @4Dgifts https://blog.quarkslab.com/pixiefail-nine-vulnerabilities-in-tianocores-edk-ii-ipv6-network-stack.html

My programming setup Link #malware_dev @islemolecule_source

Nim on the Attack: Process Injection Using Nim and the Windows API Link #malware_dev @islemolecule_source

Malware Development for Dummies Link #malware_dev @islemolecule_source

Pentester notebook:Malware Development Link #malware_dev @islemolecule_source

Fundamentals of Malware Development Link #malware_dev @islemolecule_source

About Framework for building Windows malware, written in C++ Link #malware_dev @islemolecule_source

Notes on The Art of Malware Development Link #malware_dev @islemolecule_source

Malware Development: Writing a C++ dropper Link #malware_dev @islemolecule_source

Nim on the Attack: Process Injection Using Nim and the Windows API Link #malware_dev

اگه دنبال اخبار، دوره های رایگان، لایوها، کنفرانس ها و آموزش در حوزه امنیت سایبری هستید، به ما ملحق بشید : ➡️ @onhex_ir ➡️ WebSite

David Bombal's recent podcast guest was Mr. Stephen Sims and had a great conversation about how to make money and grow in cyber security. Considering that he is an author, he has presented in conferences , he is a lecturer and he is also active in the field of exploit development, good points can be taken from his words. To generate income, mention these three points: - Contrary - Bug Bunty (Web, but mainly talking about binary exploits) - Providing professional services such as consulting and penetration testing Also, some tips to get from point 0 to a good place. Link I steal it from @onhex_ir 😁 @islemolecule_source