Theo

Slides are available here: https://t.co/f7Vzqe4NFe

Yesterday, I presented at BSides Tokyo 2026. Thank you to the organizers for the opportunity, and thank you to everyone who came up to me after my talk. I really appreciate it💜

【ブログを公開しました】BotConf 2026 登壇報告: GPUGate: Repo SquattingとOpenCL解析回避によるHijackLoaderの配送 https://t.co/uk7tp8KcrY 登壇者本人による、「Botconf 2026」の登壇レポートです🎉ぜひご覧ください！

When practicing on a VM crackme recently, I created a devirtualizer which lifts the virtual machine to LLVM to defeat the protection. LLVM-based devirtualisation is a lot of fun and I wrote down my experience and lessons learned on my blog: https://t.co/LiWNIj31uK

VECT RaaS is making headlines via partnerships with BreachForums and TeamPCP. Behind the polished image is a weak operator: the ransomware is bug-ridden, poorly built, and most encrypted files aren’t fully recoverable, even with the decryption key. https://t.co/4tK7OIoIiw

Had a lot of fun presenting at BotConf! Talk is already available on YouTube :) https://t.co/j9quOv6oOC

Introducing Combat Theater, a malware technique emulator built for blue teams, detection engineers and security researchers to perform testing and detection validation quickly and easily. Check out the introduction blog to learn more! https://t.co/mX8qmWDI9W

Theo Webb and Shungo Kumasaka will be speaking at Botconf 2026, an international conference in France focused on botnet countermeasures and malware research. https://t.co/r0vhMyv4vy

【JSAC2026のLTの資料が公開されました】LTでは、マルウェアの配布手法に注目し、Repo Squatting が実行されるポイントのリポジトリネットワークの詳細な挙動について解説しました! Deceiving Developers: Abusing Legitimate GitHub Repositories to Deliver Malware - Theo Webb https://t.co/HRwdiZJZKS

Slides from my JSAC2026 lightning talk are now available. I cover repo squatting as a malware delivery technique, why it works, and how it was used in the GPUGate campaign: https://t.co/6KnWtrM8hM

It uses GPU-based anti-analysis and code deception to confuse analysts.