hasherezade @hasherezade
Programmer, #malware analyst. Author of #PEbear, #PEsieve, #TinyTracer. Private account. All opinions expressed here are mine only (not of my employer etc) hasherezade.net Poland Joined July 2013-
Tweets23K
-
Followers84K
-
Following845
-
Likes24K
say goodbye to the sudo. a sudo replacement called run0 that will be part of the upcoming systemd 256 release. #linux
I published a step by step guide on using Windows event logs to hunt for malware trying to steal sensitive data from browsers e.g. cookies, passwords etc. security.googleblog.com/2024/04/detect… #DFIR Hope it's useful!
Google Chrome sends an ETW event when someone tries to read your passwords. You should enable these events and monitor them.
Google Chrome sends an ETW event when someone tries to read your passwords. You should enable these events and monitor them.
Lua coming for your endpoints! "Using Lua bytecode makes it harder for security software to detect the malware. Lua is a less common programming language, so many security tools might not be equipped to properly analyze it." any.run/cybersecurity-…
our small team is actively looking for more research projects, if your company is looking vr/reverse engineering projects i'd be happy to talk
AcidRain (Feb 2022) and AcidPour (Feb 2024) are two wipers have been used to impact Ukrainian victims. My most recent blog for @Trellix dives into code overlap between the two: trellix.com/blogs/research…
What’s crazy to me is that the Off By One Security channel on YouTube has been streaming since September 2022 with so many amazing guests with only 18K subs! youtube.com/@offbyonesecur… When I look at the dozens of guests we’ve had, it’s legit AF! Respect and love to all!!
What’s crazy to me is that the Off By One Security channel on YouTube has been streaming since September 2022 with so many amazing guests with only 18K subs! youtube.com/@offbyonesecur… When I look at the dozens of guests we’ve had, it’s legit AF! Respect and love to all!!
Białoruscy hakerzy wystawili w Telegramie bazę danych ze stron KGB Białorusi, z ciekawostek jest tam także baza 40k donosów nadesłanych do KGB z Białorusi ale także z Ukrainy i Polski. Jestem obecnie w górach i mam Internet jak krew z nosa, więc polecam łaskawej uwadze (pliki są…
Back to home from beautiful Switzerland. Thanks @1ns0mn1h4ck for having us, and for all your hospitality! It was a great experience
#belarus #kgb got hacked by @cpartisans. The KGB website is down for 2months. KGB database leaked on our tg channel t.me/cpartisans_by/…
MZ is back! The source code to MS-DOS 4.0has just been published, along with the source code to the drivers of DOS4-MT/DOS aka EU DOS4 github.com/microsoft/MS-D…
If you are not at @Botconf you can still watch the talks on the youtube channel 👇 youtube.com/@BotConfTV/vid…
part II of our XZ Utils incident assessment... securelist.com/xz-backdoor-st…
I recently added a few new techniques to RustRedOps, one of which was: 1. Process Herpaderping originally created by @jxy__s 2. Process Hypnosis created by github.com/carlosG13 3. IAT Camouflage is an implementation created by me to add some fake API calls in order to fake…
Most advanced code mutation, obfuscation & reverse engineering resources I have seen in my life, jaw dropped, deserve more recognition @BackEngineerLab @_xeroxz blog.back.engineering #reversing #malware #itsecurity #hacking #hacker #technology
We are approaching 300,000 followers on Twitter. This is an astronomically large number that we never expected to reach. Some thoughts and feelings: When vx-underground was first created in May, 2019 the initial goal was to 'revive the VX-scene' – with the hopes that with…
A GitHub flaw lets attackers upload executables that appear to be hosted on a company's official repo, such as Microsoft's—without the repo owner knowing anything about it. The following URLs, for example, make it seem like these ZIPs are present on Microsoft's source code repo:…
Constantly updated collection of links to blog posts, write-ups and papers related to cybersecurity, reverse engineering and exploitation github.com/0xor0ne/awesom… #cybersecurity #infosec
Windows Device Drivers Internals and some Reversing x.com/i/broadcasts/1…
Exploiting the libwebp Vulnerability, Part 1 : Playing with Huffman Code : darknavy.org/blog/exploitin… Exploiting the libwebp Vulnerability, Part 2: Diving into Chrome Blink : darknavy.org/blog/exploitin…
Florian Roth @cyb3rops
180K Followers 2K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇Nicolas Krassas @Dinosn
122K Followers 735 Following Head of Threat & Vulnerability Mgmt @ Henkel AG & Co. KGaA https://t.co/NC1orlKrW30xor0ne @0xor0ne
55K Followers 526 Following | CyberSecurity | Reverse Engineering | C and Rust | Exploit | Linux kernel | PhD | My Tweets, My Opinions :) |Justin Elze @HackingLZ
52K Followers 5K Following Hacker/CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race carsGuidedHacking @GuidedHacking
37K Followers 328 Following Reverse Engineering, Game Hacking, Malware Analysis & Exploit Development @ https://t.co/Dl5ED4o7YSAlh4zr3d @Alh4zr3d
19K Followers 283 Following Legal Criminal | Twitch cult leader | InfosecPrep founder | Lovecraft scholar | Soros mercenary | Spiritual cargo shorts wearer | Cthulhu fhtagnippsec @ippsec
111K Followers 350 FollowingAli Hadi | B!n@ry @binaryz0ne
29K Followers 567 Following DFIR and Adversary Simulation | DFIR @ ProtonMail | Perfect Stranger | Stronger Together |Grzegorz Tworek @0gtweet
30K Followers 1K Following My own research, unless stated otherwise. Not necessarily "safe when taken as directed". GIT d- s+: a+ C++++ !U !L !M w++++$ b++++ G-ςεяβεяμs - м�.. @c3rb3ru5d3d53c
21K Followers 235 Following 💕 Malware Hunter Killer 💕 #binlex & #mwcfg Developer 📽️ YouTuber 👩💻 She/Her 💍@DravenSwiftbow Support my work 👇 ☕️ https://t.co/SfTI8uJa23Yarden Shafir @yarden_shafir
19K Followers 273 Following A circus artist with a visual studio licenseAlexandre Borges @ale_sp_brazil
23K Followers 111 Following Vulnerability Researcher and Exploit DeveloperDebugPrivilege @DebugPrivilege
37K Followers 2K Following Security “Researcher” | Former Microsoft MVP | All Tweets are my opinions and thoughts. Interested in Security, Debugging, and Troubleshooting.blackorbird @blackorbird
28K Followers 600 Following Peace and Love. Just Analysis/Hunter. #APT #threatIntelligence #Exploit Need JobKarsten Hahn @struppigel
22K Followers 702 Following Malware Researcher at G DATA. Ransomware hunter. he/him 🦔🌈🏳️⚧️Spxrkz @Sparkzwentflyn
3 Followers 16 FollowingTaylor Berry @TaylorB93486719
116 Followers 597 FollowingNikitha Sagar @nikscodes
2 Followers 43 FollowingDan Nguyen @DANResponse
344 Followers 744 Following The OpenSource Guy @ https://t.co/c2mTSXlx0g, ex-cybersecurity engineer, ex-@mckinsey, ex-VCSa9lo @S49L0
1 Followers 389 FollowingJon Dones @jondones_
42 Followers 152 Following Former helpdesk, currently do everything tech relatedmkhntr @mk_log_hntr
0 Followers 40 Following Detection Content and Splunk SME - technology enthusiast and privacy paranoid.Milad Kahsari Alhadi @0cdefender0
101 Followers 67 Following Founder of Ai000 Cybernetics QLab. Interested in Mathematics, History and Computer Science.0utc4st @0utc4st___
2 Followers 118 Following.... @aosh89
1 Followers 319 FollowingRicardo Cabral @ricardosmcabral
1 Followers 54 FollowingPatrick @Margwr0n
51 Followers 321 Followingcscfufo @cscfufo
27 Followers 2K FollowingRobbie Denton @gabe2116
282 Followers 5K FollowingPhantomPanda @Phantom_Panda__
4 Followers 78 Followingjrm @50c910566fb3a33
25 Followers 130 FollowingArcibald Rajs @ArcibaldRajs89
58 Followers 52 FollowingKanDr01d @KanDr01d
18 Followers 1K Following I'm a lazy droid, what the hell do you expect from me? pls don't @ or sending f0ll0w request to me. I am not an AI or a bot, Twitter. Stop sending me your botscount_zero @count_zer00
11 Followers 11 FollowingPaweł Krawczyk @kravietz2048
738 Followers 333 Following I do information security consulting in the UK and EU. Native Polish, fluent English, Russian, Ukrainian. Been there many times. Supporting ЗСУ since 2014.#fitnessmusicoff @fitnessmusicoff
176 Followers 1K Following nature is amazing, it was never meant to be illegal. stay genuine, tables will turn. life is hard. get rich anyway. privacy is dignity. time is art.Tcyla @TcylaDev
5 Followers 70 Followingfroyo76 @mojoo78
20 Followers 197 Following Find a truly original idea. It is the only way I will ever distinguish myself. It is the only way I will ever matter....som singh lodhi @Som__23
3 Followers 19 Following love solving errors by searching for solutions on Stack Overflow or GitHub discussions. Junior @ IIIT-PuneRodrigo Rios 🇧🇷 @Rodrigofrj
32 Followers 621 Following O sábio nunca diz tudo o que pensa, mas pensa sempre tudo o que diz. Aristóteles.Ben @BenofComputers
2 Followers 14 FollowingIvan 13 @ivan92031121
4 Followers 183 FollowingCryptoHeadHunter🟨0.. @Baby0xApes
395 Followers 2K Following Proud 0xApe Family Member co-Founder of 0xBabyApeClub #yellowarmy #cityOfL0xsApes #ApewiseClothing #L0xsApesLabs Not Affiliated with LBAC. #Tribe #0xApesAhmed Eltaher @ahmedheltaher
7 Followers 117 FollowingEmma jack @emmajack005
207 Followers 2K Followinglimazuluhotel @limazuluhotel
6 Followers 200 FollowingYgor @_ygorGA
38 Followers 378 Following🇺🇦 Syrius @Syyriussss
93 Followers 2K Following Voyageur intergalactique dans l'âme, terrien Xénophile dans les faits. Sociétaire de @C_qui_le_patron #StandWithSciencePrint3M @Print3M_
35 Followers 42 Following Security Research (rather useless) & Programming. Proud father of https://t.co/BEDG5EUCGz Blog: https://t.co/leKJGz7MGuphily @philyfriend
10 Followers 192 Following𝙇𝙀𝙈𝙐𝙍�.. @__lemures__
0 Followers 22 Following Cybersecurity Student Top 13% TryHackMe Linux Enthusiast There's always more to learn.Florian Roth @cyb3rops
180K Followers 2K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇Nicolas Krassas @Dinosn
122K Followers 735 Following Head of Threat & Vulnerability Mgmt @ Henkel AG & Co. KGaA https://t.co/NC1orlKrW3Binni Shah @binitamshah
132K Followers 175 Following Linux Evangelist, Malwares , Security Enthusiast, Philanthropist , Reformist , Jain. binitamshah at protonmail dot comGuidedHacking @GuidedHacking
37K Followers 328 Following Reverse Engineering, Game Hacking, Malware Analysis & Exploit Development @ https://t.co/Dl5ED4o7YSAli Hadi | B!n@ry @binaryz0ne
29K Followers 567 Following DFIR and Adversary Simulation | DFIR @ ProtonMail | Perfect Stranger | Stronger Together |Grzegorz Tworek @0gtweet
30K Followers 1K Following My own research, unless stated otherwise. Not necessarily "safe when taken as directed". GIT d- s+: a+ C++++ !U !L !M w++++$ b++++ G-ςεяβεяμs - м�.. @c3rb3ru5d3d53c
21K Followers 235 Following 💕 Malware Hunter Killer 💕 #binlex & #mwcfg Developer 📽️ YouTuber 👩💻 She/Her 💍@DravenSwiftbow Support my work 👇 ☕️ https://t.co/SfTI8uJa23Yarden Shafir @yarden_shafir
19K Followers 273 Following A circus artist with a visual studio licenseAlexandre Borges @ale_sp_brazil
23K Followers 111 Following Vulnerability Researcher and Exploit DeveloperDebugPrivilege @DebugPrivilege
37K Followers 2K Following Security “Researcher” | Former Microsoft MVP | All Tweets are my opinions and thoughts. Interested in Security, Debugging, and Troubleshooting.Karsten Hahn @struppigel
22K Followers 702 Following Malware Researcher at G DATA. Ransomware hunter. he/him 🦔🌈🏳️⚧️Thomas Roccia 🤘 @fr0gger_
25K Followers 2K Following Sr. Threat Researcher @Microsoft, Malware Warlock, Threat Intel, Python🧡- Former @McAfee_labs, Goon @Defcon, Creator of #UnprotectProject - Tweets are my ownx86matthew @x86matthew
17K Followers 344 Following C / asm / reverse engineering. Developer at @MDSecLabs. Other stuff at @the_secret_clubAlisa Esage Шевч�.. @alisaesage
35K Followers 152 Following Independent hacker, solo winner Pwn2Own • Building my system of power knowledge @zerodaytrainingx0rz @x0rz
98K Followers 422 Following Cybersecurity & Threat Intelligence. Knowledge is power, France is bacon 🥓Jiří Vinopal @vinopaljiri
8K Followers 429 Following Threat Researcher at Check Point @_CPResearch_ #DFIR #Reversing - All opinions expressed here are mine only. https://t.co/iWvwWF1AnNGeri Revay @geri_revay
911 Followers 414 Following Ex-ethical hacker and malware analyst, currently a principal security researcher. I spent the last 15 years learning how hackers work.Axelle Ap. @cryptax @.. @cryptax
6K Followers 266 Following Mainly about security, OS, mobile phones. The postings on this page are solely my own opinion and do not represent my employer.EranShimony @EranShimony
703 Followers 129 Following Security researcher, malware analyst, low level lover and not too bad Starcraft 2 player My tweets and opinions are my ownLouis Nyffenegger @snyff
18K Followers 599 Following Founder/CEO/Trainer/Researcher/CVE archeologist @PentesterLab. Security engineer. Bugs are my own, not of my employer...Xiulan @xiulan31337
54 Followers 329 Following MalDev Enthusiast. вредоносное ПО вирус 恶意软件 恶意代码 流氓软件 マルウェア Deine MutterKsenia \n @naumovax
439 Followers 70 Following @ptsecurity malicious network traffic analyst (prev. Kaspersky web malware analyst) Passions: cybersec, osint investigations, photography, astronomyKili @kilijanek
707 Followers 2K Following I don't know anything about: computers, security or IT. 406b696c696a616e656b40696e666f7365632e65786368616e6765 My tweets are my own opinions.Solar Designer @solardiz
14K Followers 1K Following @Openwall founder, @oss_security maintainer, @lkrg_org co-author. RTs don't imply agreement with points of view.Yehuda Smirnov @yudasm_
144 Followers 342 Following Passionate about learning and exploring new frontiers in cybersecurity. Opinions are my own. #RedTeam #InfoSecManfred Paul @_manfp
5K Followers 279 Following Maths and cyber and stuff. Playing CTFs with @redrocket_ctf (and @Sauercl0ud). Pwn2Own Vancouver 2020..=2022, 2024. @[email protected]Marc Salinas @jagaimokawaii
255 Followers 316 Following RE and Malware Hunting. Researcher @ CheckPointOtterHacker @OtterHacker
5K Followers 79 Following Professional redteamer and malware development enthusiast ! I will share some tips and experiences. Look at my work here : https://t.co/cxLBvW7pcIGermán Fernández @1ZRR4H
29K Followers 575 Following 🏴☠️ OFFENSIVE-INTEL 🏴☠️ Cyber Threat Intelligence by Hackers | Security Researcher en https://t.co/rDrSxZASB3 | @CuratedIntel Member | 🥷🧠🇨🇱jinmo123 @jinmo123
1K Followers 8 FollowingScoubi @ScoubiMtl
2K Followers 249 Following InfoSec, Threat Hunting, Detection Engineering, DFIR and some personal stuff.Gabriel Landau @GabrielLandau
3K Followers 701 Following WinDbg’er @ Elastic Security. Thoughts are my own. Some of my writing: https://t.co/EMJxj12lut More: https://t.co/pxG2OnO1OC @[email protected]Haifei Li @HaifeiLi
7K Followers 151 Following For contact in the security community. NOTE: All the tweets are totally my personal opinions, not about any of my current employer stuff.2OURC3 @2ourc3
967 Followers 23 Following Security researcher. Building things, breaking others. (Opinions are not mine at all)nickharbour @nickharbour
5K Followers 231 Following Reverse Engineer with FireEye FLARE Team. Organizer of the Flare-On challenge.Daniel Plohmann @push_pnx
4K Followers 196 Following Reverse Engineering & Malware Research @Fraunhofer_FKIE. Projects: @Malpedia, DGArchive, MCRIT, SMDA, ApiScout, IDAscope.ᴀᴅᴀᴍ ʟᴀɴ�.. @AdamLangePL
4K Followers 570 Following Breaking things professionally | Researcher | Speaker | Lecturer | Podcaster | #ProudToBeDefender | Opinions are my own.shavit @shavitush
652 Followers 191 Following (personal account) security researcher @_CPResearch_, former game hacker, lesbian ~ she/her / את/היא/שלהEduardo Kamioka @ekamioka
307 Followers 3K Following IT Sec Data Scientist at inlyse GmbH. Learning, Unlearning and Relearning.Andrea Naspi @andreanaspi
173 Followers 543 Following Msc Cybersecurity at @SapienzaRoma | Threat Hunting | Malware Analyst @nozominetworksMaor Shwartz @malltos92
3K Followers 4K Following Help researchers, offensive cybersecurity companies and governments navigate the offensive cybersecurity industryIdo Veltzman @Idov31
3K Followers 37 Following I'm a security researcher that using this platform to share my projects and research. Opinions are my own. https://t.co/UiWgKq40sVWho said what @g0njxa
2K Followers 187 Following qui fa lo que pot no esta obligat a mes | objetivo 2028 | Bad Student, enthusiast, more likely than an expert DMs are open, feel free to reach! 😼☂️🟣🍇👾Yoav Levi @bluepompompurin
14 Followers 4 FollowingHighland King @ImmersiveKing
15 Followers 190 FollowingBoymoder RE @boymoderRE
991 Followers 19 Following Boymoder RE does not, has not, and will never exist.Saar Amar @AmarSaar
18K Followers 362 Following Reversing, exploits, {Windows, Hyper-V, *OS} internals, mitigations. Apple SEAR. Opinions are my own. @[email protected]Eli @elikaski
34 Followers 56 FollowingSmadj @elismadja
60 Followers 177 Followingjdelta @jdelta11
704 Followers 190 FollowingStephen Sims @Steph3nSims
20K Followers 601 Following Perpetual Student | SANS Fellow | Musician | Braggart Hater | Gray Hat Hacking | VR | 🏂 | d3adc0de | oNLyHaCKeRs | https://t.co/CadJehomsUallthingsida @allthingsida
2K Followers 2 Following All things IDA, security, reverse engineering, programming, AI and more. Friend and fan of Hex-Rays but non-official.Igal Lytzki🇮🇱 @0xToxin
9K Followers 285 Following Security Researcher at @Microsoft | Ex - Perception Point Threat Analyst & Team LeadCharlie Clark @exploitph
5K Followers 1K FollowingHacky Easter @HackyEaster
1K Followers 73 Followingdr4k0nia @dr4k0nia
5K Followers 97 Following Security Researcher, student in the meantime 👧🏻 I specialize in .NET malware analysis and tooling My Blog ✍🏻 https://t.co/UetpEwyAGqred5heep @red5heep
396 Followers 73 Following Security Analyst/Researcher. I usually NOP things. QHJlZDVoZWVwQGluZm9zZWMuZXhjaGFuZ2U=github.com/commial/experi… Little experiment about reusing Windows Defender built-in unpackers, mostly for fun (based on the very useful @taviso's loadlibrary)
Lua coming for your endpoints! "Using Lua bytecode makes it harder for security software to detect the malware. Lua is a less common programming language, so many security tools might not be equipped to properly analyze it." any.run/cybersecurity-…
Lua coming for your endpoints! "Using Lua bytecode makes it harder for security software to detect the malware. Lua is a less common programming language, so many security tools might not be equipped to properly analyze it." any.run/cybersecurity-…
I noticed an interesting change starting from Windows 11 22H2 in the behavior of NtSystemDebugControl when taking a live kernel dump (SysDbgGetLiveKernelDump) including user-mode pages (flag IncludeUserSpaceMemoryPages). Until Windows 11 21H2 code in nt!DbgkCaptureLiveKernelDump…
[BLOG 📝] (1/2) I’ve missed the moment when the Ascension Endgame has been retired on @hackthebox_eu, but finally, here’s my write-up: snovvcrash.rocks/2024/04/30/htb…
uh.... gpt2-chatbot just solved an International Math Olympiad (IMO) problem in one-shot the IMO is insanely hard. only the FOUR best math students in the USA get to compete prompt + its thoughts 🧵
🧵megathread of speculations on "gpt2-chatbot": tuned for agentic capabilities? some of my thoughts, some from reddit, some from other tweeters my early impression is 👇
What’s crazy to me is that the Off By One Security channel on YouTube has been streaming since September 2022 with so many amazing guests with only 18K subs! youtube.com/@offbyonesecur… When I look at the dozens of guests we’ve had, it’s legit AF! Respect and love to all!!
Great streams coming up on the Off By One Security Channel from @FuzzySec, @haxorthematrix, @yarden_shafir, @AlanSguigna, @jstrosch, and more coming soon!! Please let me know what additional topics you'd like to see? Join our Discord Server here: discord.gg/offbyonesecuri…
Great streams coming up on the Off By One Security Channel from @FuzzySec, @haxorthematrix, @yarden_shafir, @AlanSguigna, @jstrosch, and more coming soon!! Please let me know what additional topics you'd like to see? Join our Discord Server here: discord.gg/offbyonesecuri…
Hell yeah !!! I'll be speaking at @reconmtl !!!
CrimsonEDR - Simulate The Behavior Of AV/EDR For Malware Development Training kitploit.com/2024/04/crimso… #Pentesting #CyberSecurity #Infosec
Zscaler Blog | Zloader Learns Old Tricks zscaler.com/blogs/security…
🚨📢 Insomni'hack 🥳 It's a wrap! The 15th edition of Insomni'hack, was a real success! 🤝A huge thank you to everyone involved in organizing this event, our partners and the integrators village. 🙏🏼Thank you to the participants and customers! #INSO24 ©mgphotographies
In the past, I used gtest for C code. Works ok but cmake and C++ are sort of overkill, and not high level. Next time I unit test C code I'd probably write the unit tests in Python. Here's a nice article on the idea. What has been your experience? p403n1x87.github.io/running-c-unit…
I'm very happy to announce that I will once again be speaking at @x33fcon I will be covering new phishing evasion techniques and talk about how IP blacklisting is pretty much useless these days. Also - super humbled to be giving the first talk of the conference. 🔥
Just released 🎉: Malware analysis of IDAT (Hijack) Loader, its injection from IDAT (PNG file) streams, and how it uses Process Doppelganging This covers both dynamic and static analysis techniques which can be used to unravel the final payload Enjoy! youtu.be/UA6MqCPTQAA?fe…
Weekendowa Lektura: odcinek 569 [2024-04-28]. Bierzcie i czytajcie zaufanatrzeciastrona.pl/post/weekendow… Co prawda, weekend zmierza już ku końcowi, ale przed nami majówka, podczas której będziecie mogli ogarnąć wszystkie zebrane przez nas wieści ze świata cyber.
Believe it or not, in the years 1950-1951, the A. C. Gilbert Company distributed the Gilbert U-238 Atomic Energy Lab, a toy kit allowing kids to make nuclear reactions at home using actual radioactive material. It was taken off the shelves in 1951
@hasherezade @1ns0mn1h4ck Saint-Sulpice? Used to live there, it's a lovely place.