Sotwe logo Sotwe logo
effilnuc_'s profile image

Amy

@effilnuc_

Security Researcher
United Kingdom
Joined May 2019
1.1K Following
264 Followers
147 Posts
effilnuc_  retweeted
mr_phrazer's profile image
Tim Blazytko Verified account @mr_phrazer
The slides of our @reconmtl talk on the next generation of virtualization-based obfuscators are now available. @m_u00d8 & I show how to break current VMs and why these attacks will no longer work. We also discuss the next steps in deobfuscation research. https://t.co/mFUp1Xz8Y0
mr_phrazer's tweet photo. The slides of our @reconmtl talk on the next generation of virtualization-based obfuscators are now available. @m_u00d8 & I show how to break current VMs and why these attacks will no longer work. We also discuss the next steps in deobfuscation research. https://t.co/mFUp1Xz8Y0 https://t.co/qXJ3l4BnRw
5
189
72
33
0
effilnuc_  retweeted
Adam_Cyber's profile image
adam_cyber Verified account @Adam_Cyber
@CrowdStrike Intelligence published a blog and code to decrypt files that may have been encrypted by ransomware called #partyticket in #ukraine https://t.co/2kvu1QEWGb
0
85
50
10
0
effilnuc_  retweeted
0xInfection's profile image
Pinaki ❄️ @0xInfection
Just published the first blog of a many part series on WMI. The writeup is a pretty small one but hopefully enough to get started with the main series. So here you go. :) "Offensive WMI: The Basics (Part 1)" https://t.co/Cjjvw4iLvb
0xInfection's tweet photo. Just published the first blog of a many part series on WMI. The writeup is a pretty small one but hopefully enough to get started with the main series. So here you go. :) "Offensive WMI: The Basics (Part 1)" https://t.co/Cjjvw4iLvb https://t.co/JjgqM0dYld
3
468
150
114
0
effilnuc_  retweeted
hasherezade's profile image
hasherezade Verified account @hasherezade
I wanted to play with this technique, and there was no PoC provided, so I made my own. If anyone needs, it is here: https://t.co/rFTVizAjpz // #ProcessGhosting
2
368
134
62
0

Who to follow

LAripping's profile image
Leo Tsaousis
@LAripping
Senior Security Consultant @ Reversec (fka @withconsulting / MWR). Talks mostly about security. As Rino put it, sometimes maybe good sometimes maybe shit
_calumhall's profile image
Calum Hall
@_calumhall
Co-Founder of Phorion 🔍| Threat Detection and Response Manager at GitHub 👨‍💻| macOS researcher 🍎 | BlackHat speaker 2021 📢 Opinions are my own
rookuu_'s profile image
Luke Roberts
@rookuu_
Red Team. macOS Security. Ex-@mwrlabs. Building @phoriontech
effilnuc_  retweeted
passthehashbrwn's profile image
Josh @passthehashbrwn
New blog is up. Walks through bypassing the syscall detections that I wrote by finding a clean syscall instruction within NTDLL and patching a jmp to it. No more suspicious syscall instructions floating around in your code or memory. https://t.co/Bb8imxO1P6
1
282
125
59
0
effilnuc_  retweeted
RolfRolles's profile image
Rolf Rolles @RolfRolles
Short new blog entry: Hex-Rays, GetProcAddress, and Malware Analysis https://t.co/QjjQwqTshz
4
158
66
30
0
effilnuc_  retweeted
ajpc500's profile image
Alfie Champion @ajpc500
FWIW I’d imagine the FireEye DARKSIDE blog is the first time many defenders have heard of F-Secure’s C3. I thought it might be useful to resurface some material we’ve put out for detection opportunities/limitations (1/7)
3
243
86
46
0
effilnuc_  retweeted
Jean_Maes_1994's profile image
Jean @Jean_Maes_1994
[BLOG] some quick ramblings on code signing and binary attributes and their opsec implications if you have to drop to disk: https://t.co/uUq9GKf9al
2
79
30
11
0
effilnuc_  retweeted
_can1357's profile image
Can Bölük Verified account @_can1357
It's been a while since I wrote anything so I wrote an article on how to discover the entire x86-64 instruction set in seconds including any hidden instructions and learn their basic properties while on it. There were some pretty interesting results! https://t.co/t7vMwYDYas
12
1K
415
275
0
effilnuc_  retweeted
craiu's profile image
Costin Raiu Verified account @craiu
Interesting story, curious to see some IOCs and how it develops: https://t.co/3qzdFJ77tW
2
153
74
26
0
effilnuc_  retweeted
hasherezade's profile image
hasherezade Verified account @hasherezade
I started creating a free #MalwareAnalysis training: https://t.co/Glofblatut - what do you think?
103
3K
867
510
0
effilnuc_'s profile image
Amy @effilnuc_
Very close battle in the end! Thanks for running it @xme, great week.
xme's profile image
Xavier Mertens @[email protected] 🇧🇪 @xme
The best day... #FOR610 challenge running at full speed!
xme's tweet photo. The best day... #FOR610 challenge running at full speed! https://t.co/9PxQiadUML
0
5
0
0
0
0
1
0
0
0
effilnuc_  retweeted
_CPResearch_'s profile image
Check Point Research Verified account @_CPResearch_
A #WindowsSandbox deep dive. Even though it mixes the widely documented #HyperV/#WindowsContainers technologies, we still lack the internals of its great features - dynamic base image, file linking and more. Kudos @_alex_il_ for the great analysis. https://t.co/j1lObhb8fE
2
195
95
44
0
effilnuc_  retweeted
thezdi's profile image
TrendAI Zero Day Initiative Verified account @thezdi
When reversing, do you use black box or white box techniques? Does it matter? @trendytofu looks at 2 different #NETGEAR bugs from different researchers using different approaches that ended up with similar results. https://t.co/5HP2rdlZA7
0
73
26
9
0
effilnuc_  retweeted
MalwareRE's profile image
Ramin Nafisi Verified account @MalwareRE
Thread on #NOBELIUM's new malware families: #GoldMax (aka #SUNSHUTTLE), #GoldFinder, and #Sibot 👇
3
48
24
6
0
effilnuc_  retweeted
Volexity's profile image
Volexity Verified account @Volexity
Volexity has identified multiple 0-day exploits in Microsoft Exchange resulting in authentication bypass and RCE. Actively exploited in the wild since at least January 2021. More here: https://t.co/nnCkaYRPRm #threatintel #dfir #infosec
Volexity's tweet photo. Volexity has identified multiple 0-day exploits in Microsoft Exchange resulting in authentication bypass and RCE. Actively exploited in the wild since at least January 2021. More here: https://t.co/nnCkaYRPRm #threatintel #dfir #infosec https://t.co/XCoQ6msen6
7
499
314
29
0
effilnuc_  retweeted
0xcsandker's profile image
Carsten @0xcsandker
Just published Part 2 of my series: Offensive Windows IPC Internals 2: RPC Enjoy ❤️ https://t.co/QJSTNoPHwv
4
578
235
119
0
effilnuc_  retweeted
cherepanov74's profile image
Anton Cherepanov @cherepanov74
Quite detailed analysis of Exaramel Linux backdoor and its versions deployed by Sandworm on Centreon servers: https://t.co/cglHYeS2Uj Thanks to @ANSSI_FR for publishing
cherepanov74's tweet photo. Quite detailed analysis of Exaramel Linux backdoor and its versions deployed by Sandworm on Centreon servers: https://t.co/cglHYeS2Uj Thanks to @ANSSI_FR for publishing https://t.co/pfuQgp4SlA
0
49
20
7
0
effilnuc_  retweeted
AdeptsOf0xCC's profile image
Adepts of 0xCC @AdeptsOf0xCC
Today we’ll bring you another approach to play with MiniDump buffer before it touches disk by @Mari0Bartolome Hooks On Hoot Off - Vitaminizing Minidump https://t.co/nIZu68oGvT
1
85
43
8
0
effilnuc_  retweeted
holisticinfosec's profile image
Russ McRee @holisticinfosec
Given Cobalt Strike’s prevalence as a “malware” platform, including the SolarWinds supply chain attack, this blog post summarizes what an analyst needs to know about Cobalt Strike to quickly identify and analyze it during incidents. #DFIR #BlueTeam #SOC https://t.co/GBSR4SHKdS
0
147
74
45
0

Last Seen Users on Sotwe

umrumda_del027's profile image
⭐İfşa kralı⭐
Seen from Turkey
turbanli__ifsaa's profile image
Türbanlı İfşa
Seen from Turkey
markvhal1's profile image
haircutboy_nl
Seen from Singapore
KangPukul12345's profile image
Kang Pukul
Seen from Indonesia
SarinaValentina's profile image
Sarina Valentina Verified account
Seen from Jordan
Kerimistanbul1's profile image
KERİM TEK ERKEK İSTANBUL
Seen from Turkey
lalfwad3's profile image
A___22
Seen from Oman
AlexanderR65446's profile image
Alexandra Ross
Seen from Switzerland
Senben56075638's profile image
Sen ben
Seen from Turkey
ertedl1's profile image
48Muğla
Seen from Turkey

Trends for you

1
#USMNT
Under 10K tweets
2
Balogun
Under 10K tweets
3
Fauci
Under 10K tweets
4
Aussies
Under 10K tweets
5
Go USA
Under 10K tweets
6
#UFC6
Under 10K tweets
7
Air Force One
Under 10K tweets
8
Pretty Ricky
Under 10K tweets
9
Russell Crowe
Under 10K tweets
10
USA WINS
Under 10K tweets

Most Popular Users

elonmusk's profile image
1
Elon Musk Verified account
@elonmusk
240.3M followers
barackobama's profile image
2
Barack Obama Verified account
@barackobama
119.3M followers
realdonaldtrump's profile image
3
Donald J. Trump Verified account
@realdonaldtrump
111.6M followers
cristiano's profile image
4
Cristiano Ronaldo Verified account
@cristiano
109.9M followers
narendramodi's profile image
5
Narendra Modi Verified account
@narendramodi
106.9M followers
rihanna's profile image
6
Rihanna Verified account
@rihanna
97.5M followers
nasa's profile image
7
NASA Verified account
@nasa
92.1M followers
justinbieber's profile image
8
Justin Bieber Verified account
@justinbieber
90.7M followers
katyperry's profile image
9
KATY PERRY Verified account
@katyperry
87.3M followers
taylorswift13's profile image
10
Taylor Swift Verified account
@taylorswift13
81.1M followers
ladygaga's profile image
11
Lady Gaga Verified account
@ladygaga
72.7M followers
kimkardashian's profile image
12
Kim Kardashian Verified account
@kimkardashian
69.6M followers
imvkohli's profile image
13
Virat Kohli Verified account
@imvkohli
69.3M followers
youtube's profile image
14
YouTube Verified account
@youtube
68.6M followers
billgates's profile image
15
Bill Gates Verified account
@billgates
63.7M followers
theellenshow's profile image
16
The Ellen Show
@theellenshow
62.5M followers
neymarjr's profile image
17
Neymar Jr Verified account
@neymarjr
62M followers
cnn's profile image
18
CNN Verified account
@cnn
61.9M followers
x's profile image
19
X Verified account
@x
60.9M followers
selenagomez's profile image
20
Selena Gomez Verified account
@selenagomez
60.4M followers