nugxperience @nugxperience
Joined October 2016-
Tweets50
-
Followers288
-
Following995
-
Likes2K
🤯 The level of sophistication of the XZ attack is very impressive! I tried to make sense of the analysis in a single page (which was quite complicated)! I hope it helps to make sense of the information out there. Please treat the information "as is" while the analysis…
mastodon.social/@q3k@hackerspa… q3k from @DragonSectorCTF has figured out the string/symbol obfuscation in the xz backdoor! there's appears to be a lot more going on then reported in the initial report.
#flareon10 complete, slid into 50th place. I gave it all of my spare time and had a blast the whole way. Highlights for me were FlareSay and kupo, but every challenge was great and satisfying to solve. Thanks to the challenge authors!
Would it be Flare-On if I didn't find myself using the Visual Instruction Meta-optimizer (vim.org) to reconstruct some code? #flareon10
Is the flag in there? Let me in! 12 down. #flareon10
Looks like I made the right choice today. 11 down. #flareon10
Nah, it was actually super chill. 10 down. #flareon10
Just saved $20,000 bucks. 9 down. #flareon10
When you take way too long to get the flag and don't gain any position on the scoreboard. Challenge 7 down. #flareon10
Finding myself by helping computer programs find themselves. 5 down. #flareon10
This is not a drill. They are not messing around this year. Seek shelter. #flareon10 youtube.com/watch?v=CtjxvL…
#flareon9 complete! Challenges 7, 8, and 9 were the sweet spot for chill reversing sessions.
There's far better things to do on a Mac than that. #flareon9 marathon.bungie.org/temp/cmullins/…
Always leave the binary cleaner than you found it. #flareon9
Doing it for the dopamine, this one paid off. #flareon9
For me making analysis "durable" means choosing to put it in structured forms & tech that are consistent, recallable, programmatically query-able & applicable to fresh data. That's why I love using Synapse, Suricata, Sigma and YARA. I want my analysis to live as long as possible.
60% is a passing grade, right? #flareon8
Gwendolyn Brashears @GwendolynB67438
82 Followers 5K FollowingNelda Notte @NeldNot
0 Followers 102 FollowingAlon @llrobus
31 Followers 434 FollowingSelah Callahan @CallahanSe36057
54 Followers 5K Followingcscfufo @cscfufo
30 Followers 2K FollowingOphelia @ahner_ophelia56
197 Followers 3K FollowingDiana Turney @TurneyDian44296
11 Followers 830 FollowingTamia Joseph @JosephTami8831
18 Followers 817 FollowingMuhammad Hendro @hendro_jun
351 Followers 2K FollowingChristophe de Dinechi.. @zanyware
902 Followers 2K Following Husband, Dad, Coder, Christian. Anti-propaganda. #HPVM #XL #Tao3D #Physics Author (sci-fi and physics)Connie Johnson @ClHalleman
799 Followers 389 Following::1 @5PzjRFiI8tddybj
45 Followers 153 FollowingJoycelyn Gillam @JoycelGilla
86 Followers 5K FollowingFirefeather564 @ff564tweets
1K Followers 2K Following Hi, I'm firefeather564! Pleasure to meet you y’all! Started Twitter since October 18, 2021! Switch Friend Code 0634-1176-4616 | ArtistEmily Rojas @EmilyRojas73362
94 Followers 5K FollowingErminia Begnoche @ErmiBegnoc
32 Followers 2K Following 🍓Erminia ~ 21 ~ Earn now with crypto presale👇🫐Shameem Bhat @hacktvist
665 Followers 692 Following wanderer, who thrives to explore the different dimensions of life and culture.Benjamin Flr @BenjaminFlr_
100 Followers 208 Following Mec atypique qui fait des trucs avec des ordinateurs sans écran et qui aime les jolies photos de vaches.Mr. R0b0t @RekcahDaddy
42 Followers 361 Following I dabble in pentesting, red teaming & tooling development.schuyler d @schuyler1d
285 Followers 826 Following Developer. Help change the world. @[email protected]isvdyek @isvdyek
0 Followers 625 FollowingFlorian Roth @cyb3rops
180K Followers 2K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇Camille Halligan @HalligCamill
47 Followers 5K Followingsm_dg_ @sm_dg_
6 Followers 949 Followinganub1s @An4b1s
283 Followers 5K FollowingCT @CT55993452
15 Followers 56 FollowingMartin Holly @MartinHolly42
34 Followers 145 Followingduckie @vx__notduck1e
258 Followers 1K Following likes malware | does blue+red team things | OSCP check out my rarely updated blog 👇🏻👇🏻👇🏻0xC0DE @0xC0DE6502
4K Followers 1K Following Acorn Electron fanboy | 6502 coder | https://t.co/W6mMJdZ0Xu | https://t.co/JofCoCh4tmMr. Rc @rcx86
11K Followers 446 Following Low-Level CS, RE & Systems Programming. 16 y/o ◦ Member @thehackerscrew1 ◦ https://t.co/HDi3p5I8pV | 🇮🇳Grzegorz Tworek @0gtweet
30K Followers 1K Following My own research, unless stated otherwise. Not necessarily "safe when taken as directed". GIT d- s+: a+ C++++ !U !L !M w++++$ b++++ G-allthingsida @allthingsida
2K Followers 2 Following All things IDA, security, reverse engineering, programming, AI and more. Friend and fan of Hex-Rays but non-official.Joe Christian @Jo3Ram
956 Followers 431 Following Security | Formerly @BrexHQ @Zappos | PhD Student @DakotaState | Co-founder of @appsec_village | Thoughts are my own opinions and do not represent my companyDark Web Informer @DarkWebInformer
26K Followers 35 Following I provide intel from the #DarkWeb & #Clearnet. Ransomware, Darknet Markets, Threat Alerts, Breaches, & more! Inform your infosec team, if data has been exposed!Anthony Weems @amlweems
3K Followers 244 Following Cloud Vulnerability Research • The opinions stated here are my own, not those of my company.Squiblydoo @SquiblydooBlog
2K Followers 60 Following Malware Analysis (mostly SolarMarker) I post my random arts under the handle @SquiblyArt Debloat discord: https://t.co/ZcWIqa6rKBRussianPanda 🐼 �.. @RussianPanda9xx
8K Followers 355 Following Senior Threat Intelligence Researcher at @esthreat | Threat Hunter | Malware AddictArda Büyükkaya @WhichbufferArda
3K Followers 944 Following Cyber Threat Intelligence Analyst @EclecticIQ | Threat Hunter | Malware Analyst |. (All opinions expressed here are mine only). 🇹🇷🇳🇱qearch @13_4rch
91 Followers 1K FollowingYashraj Solanki @RustyNoob619
561 Followers 223 Following Cyber Threat Intelligence Analyst @bridewellsec (All tweets are my views) C2 Hunting | Malware Noob | ICS AddictLeandro Inácio @skate_forever
314 Followers 1K FollowingJMP NOP @jmp_nop
11 Followers 92 FollowingAnkur @Ankuryogi11
253 Followers 4K Following Data and Engineering ....................... A breathing creature on planet earth The true power of science is bruteforce .Stop fitting innNadim Kobeissi @kaepora
23K Followers 644 Following Senior applied cryptography auditor @Cure53Berlin • Director @SymbolicSoft • Mastodon: https://t.co/kmlXy019OlBarre Dijkstra @barredijkstra
423 Followers 1K Following software dev/mgmt, teaching offsec/re. csirt @DIVDnl, re/vx hobbyist, CTFs, shit posts salp @ other socials, he/him #HackingIsNotACrimeThe Real STEM Sadie �.. @stem_sadie
672 Followers 405 Following Cryptanalyst, DFIR, & OSINT | cat mom | meme-maker | blogger | public speaker | #Neurodiversity in #CyberSecurity | #HAE #PANDAS #FND | opinions==mineEric S. Raymond @esrtweet
9K Followers 57 Following Yes, I *am* that ESR. Well, it's the question people usually ask.Bojan Zdrnja @bojanz
4K Followers 698 Following IT Security guy, penetration testing is my thing. One of the SANS Internet Storm Center handlers at https://t.co/KLxU4pooKI. SANS SEC542 instructor and course co-author.Andres Freund (Tech) @AndresFreundTec
9K Followers 105 Following FWD: @[email protected] Postgres developer, working at Microsoft. For politics: @AndresFreundPolAli Aqeel @aaqeel87
711 Followers 444 Following Malware Research Analyst @hatching_io. Opinions are mine🐍Furkan Onder🐍 @fsyscall
4K Followers 531 Following @thepsf Triage Member | Focusing on CPython #LKD #Python #ArchLinux #Django #eBPF👾📡 @jjaswb
177 Followers 2K Followingfsharp @fsharp123
17 Followers 130 Following CTF player @thehackerscrew1. Interested in reverse engineering and forensics.JiaTan @reenz0h
336 Followers 3K Following Hacktivist The chief enemy of good decision is the lack of sufficient perspective on a problem.ocdsec @0xocdsec
3K Followers 4K FollowingEthical Hacker @offethhacker
2K Followers 5K FollowingAlex @alex_bondcoo
338 Followers 3K Following 追求自由而又缺失在自由道路上..........Don't trust words, trust actions.revolver-ocelot-saa @saa_revolver
34 Followers 256 FollowingDaniel Mayer @dan__mayer
558 Followers 492 Following https://t.co/K4CorT895N Adversary Simulation @specteropsUncharmed: Untangling Iran's APT42 Operations | Google Cloud Blog cloud.google.com/blog/topics/th…
This had to be done: I really like the 2 colour effect of *only* drawing the simple landscape contouring
I played @Bugcrowd's CTF alone and placed 4th out of 325 teams! The challenges were interesting and some of them were quite tough, especially the ones in the web and OSINT categories. Congrats to the winners and thanks for the fun CTF!
Must read from @_CERT_UA on UAC-0133 (APT44/Sandworm) targeting UA critical infrastructure. Extremely notable callout from CERT-UA this was likely in prep for sabotage operations in conjunction with missile strikes on Ukrainian infra in the spring of 2024 cert.gov.ua/article/6278706
I'm currently at 753 hours of listening & watching Spanish out of my goal of 1500 hours and today was the first time I heard anybody say Ay, caramba!
April is Autism Awareness and Acceptance month! Despite being a parent to a teenager on the spectrum, I regularly feel like I don't have any clue about it beyond my own experience, and finding adult people on the spectrum has been really eye opening to that reality.
Every time I worry that I'm actually getting dumber as time goes on, it turns out that I'm just becoming increasingly aware of my own stupidity, and, paradoxically, becoming less dumb! This is confirmed by looking at my past work and realizing that I could do better today.
Thanks @CISAgov for a great competition again this year, and @Google for supporting me as I balance being a member of @marforres and a Googler. Looking forward to participating again next year!
Congratulations to U.S. Marine Corps Staff Sergeant Michael Torres for winning Track B today with a perfect score and making history as the first individual to win the #PresCup more than once. Today kicks of day 1 of the Teams round to see who will escape with the top score.
The volume of understanding baked into APT44 is remarkable. Over 40 merged clusters of activity with operations stretching back a decade. So much insight from the group's wartime operations in Ukraine. A testament to the incredible team here at @Mandiant, past and present.
A nice surprise arrived in the post today. Thanks @greglesnewich! #100DaysofYARA
@ImposeCost saw this better one somewhere here
Fresh from Binarly REsearch team: We’ve completed an in-depth analysis of the #XZbackdoor, from initialization to the main hook enabling remote access. Dive into our validated breakdown of techniques and backdoor functionalities, complete with proofs. github.com/binarly-io/bin…
During the last two weeks, we have been focused on detailed analysis and validation of the existing public information. Today, we want to share our validated results and interesting new discoveries on #XZbackdoor. The REsearch is in progress ...
Fresh from Binarly REsearch team: We’ve completed an in-depth analysis of the #XZbackdoor, from initialization to the main hook enabling remote access. Dive into our validated breakdown of techniques and backdoor functionalities, complete with proofs. github.com/binarly-io/bin…
XZ backdoor story – Initial analysis. Unlike other supply chain attacks we have seen in Node.js, PyPI, FDroid, and the Linux Kernel that mostly consisted of atomic malicious patches, fake packages and typosquatted package names, this incident was a multi-stage operation that…