Olivia
Online
me.c3
@mec314
Joined September 2012
318 Following
49 Followers
513 Posts
the developer helped to solve everything
How to fix the Yara signatures empty field? This tab stopped displaying information for me on any open file.
Malcat version 0.9.9 is out! Check out the new offline version of Kesakode for blazing-fast (unpacked) #malware identification across 2000+ families.
Also python 3.13 support (& disassembler), new file parsers & improved UI:
https://t.co/wU87EzSARb
We are thrilled to announce the winners of the 2024 Hex-Rays Plugin Contest!
🥇1st Place: hrtng
🥈2nd Place: aiDAPal
🥉3rd Place: idalib Rust bindings
Check out our reviews of the winners and other notable submissions here: https://t.co/MDQV6uwBxw
Huge thank you to all participants for their innovative contributions. Your creativity continues to enhance the IDA community.
#HexRays #IDAPro #PluginContest #ReverseEngineering
🚀 Today I'm launching ArgFuscator: an open-source platform documenting command-line obfuscation tricks AND letting you generate your own
🔥 68 executables supported out of the box - use right away, make tweaks, or create your own
👉 Now available at https://t.co/eZbpI08AzP
Bypass AMSI by uninitializing the IActiceScript object (zero ptr at 0x3c8). Slightly modified wscript no longer calls into AMSI.
I created a hypervisor-based emulator for Windows x64 binaries. This project uses Windows Hypervisor Platform to build a virtualized user-mode environment, allowing syscalls and memory accesses to be logged or intercepted. https://t.co/KbsWfdLT3D
Project:
https://t.co/xJvm24qqXv
@filip_dragovic try for another dir not C:\Config.Msi or with > medium IL
Small gift for you! 🔺🟦🔺
Code to reliably stop almost any 3rd party Windows security system, via ci!CiValidateFileAsImageType.
No privileges needed at all, user rights are enough. Shall work on most OS: 10 22H2, 11 24H2, WS2022.
But: it requires CI policies (e.g. HVCI/UMCI on).
Updated #TinyTracer (v2.9) is out: https://t.co/qvbQqaUq16 ! Now you can trace indirect #syscalls, and dump context before each logged instruction.
"Raspberry Robin uses an interesting approach to avoid detection while adding registry data.
Rather than modifying the Windows registry directly using common Windows API functions (e.g. RegOpenKey, RegSetValueEx), Raspberry Robin first renames the target registry key to a random one, writes the registry data into the renamed key, and renames it back to its original name.
However, if administrator privileges are available, Raspberry Robin uses a different approach. At first, it renames the registry key, creates an offline registry hive in the Windows temporary directory with a random filename. Then, it writes the registry data in the offline registry hive and loads the offline hive to the global registry tree using ZwRestoreKey."
https://t.co/ruEHK6YQRu
I wrote an article about known attacks on Elliptic Curve Cryptography, check it out! https://t.co/hFAatykkxo
@threatactress https://t.co/gu9LAK6aOn lvl9 - serpentine
flareon serpentine.exe ?
@malcat4ever @joe4security does the option require a corporate tariff to the sandbox? no access to dumps on a free communitie account
You've coded brilliant fallback codepath for case when menacing 𝐁𝐞𝐞𝐩 EDR is running, but have no rights to check its presence?
EZ check:
isBeepEdrDriverRunning = NtQueryFullAttributesFile(
ObjAttr(L"\\Driver\\Beep"),
NtCurrentTeb()) == STATUS_OBJECT_TYPE_MISMATCH;
@aldityairfan this lvl is crazy
Introducing Early Cascade Injection: from Windows process creation to stealthy injection https://t.co/xoMCN5eo1g
@TriggerMeHappy Stuck on level 5. What should i pay more attention to: the LZMA algorithm, RSA or download symbolic names for some additional libraries?
Most Popular Users
Elon Musk 
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.6M followers
KATY PERRY
@katyperry
86.8M followers
Taylor Swift
@taylorswift13
80.6M followers
Lady Gaga
@ladygaga
72.2M followers
Kim Kardashian
@kimkardashian
69.4M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.6M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.1M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
59.9M followers