Olivia
Online
Samuel Tulach
@tulachsam
web:
Joined April 2020
186 Following
1K Followers
65 Posts
Pinned Tweet
Protecting processes PML4 address using a global kernel exception hook. Does not trigger PatchGuard and is compatible with HVCI.
Bit unstable, does not handle any edge cases at all, just wanted to experiment with it a little.
https://t.co/SzFA5kBUHa
Trying to implement "cr3 shuffling" used by some anticheats. Spend last 4 days going back and fourth between IDA and WinDbg.
It works already, but after a while the system crashes :/
@kernullist Being verified doesn’t help much, it just turns into more generic refusal message without mention of “cyber content”.
@ken_chung ist es in deutschland nicht illegal, keinen zu haben?
Do you know how to press F5 in IDA, some C/C++ and system internals?
Come work with our team. We are hiring.
Who to follow
@MERGE_EGO Let’s say you can get a company bike
@karollooool I don’t know a single good anticheat person who would not be an ex-cheat dev.
It would be preferable to have some other work experience though, since that makes you more trustworthy. Also, obviously, you cannot be working on cheats anymore (unless for internal testing ofc).
@TwoHumpChump I've played around with automated pipelines using LLMs for reversing and honestly if the entirety of the job was just analyzing samples, then it could be almost fully automated.
With that said, we've got Claude too and if we could just prompt it, we would not need new hire :)
@MrShadow_CPP I also wasn't in Germany, there is relocation support provided, but if you are outside of the EU it might be a bit painful due to visa issues.
@spookythyscary Primary team location is in Düsseldorf and while I can't promise anything, we used to have people working from Montreal as well, so exceptions could be made.
https://t.co/xSJ3kJZkjY
@crvvdev @ogisadaDMA Underpaid compared to other security positions? Maybe. Doing a P2C on the side? That would be a career suicide. If anyone figures, you are not getting hired in any remotely serious company ever.
@daaximus I might be out of the loop but I thought RE CTFs were free-for-all (except solution sharing) most of the time, and if LLMs get you to the result, doesn’t that just mean CTFs need to level up?
I am pretty sure LLMs can’t write VMP devirt (yet).
@crvvdev You don’t have to even directly ask about something. OpenAI models have so aggressive filtering you can have IDA MCP running, it will find cheat related strings and it will refuse to continue because “reversing a cheat might help you recreate it” 🤦♂️
@s4dbrd .be0 is in fact VMProtect section, as VMProtect allows you to change what section name to use and its definitely not decrypted at runtime as that would break compatibility with kernel code integrity checks…
>download codex
>try it out with first prompt ever
>immediately fails
maybe they should use codex to fix codex idk
@virustotal Another weird thing is that I was checking the rating few months ago, and it had more ratings (even positive). Might be VT removing entries from obvious bots/spam? (3/3)
I had to already file false positive reports to several EDRs so they would stop blocking my website.
I have a really bad feeling they just leech off the community rating on @virustotal, because for some reason my site is bombarded with bogus negative ratings. (1/2)
@virustotal From what I've checked, other people's blogs don't have this issue, so I am kind of wondering why my site specifically. It's a static blog hosted on GitHub pages. There are sites writing about literal malware development having no issues what so ever... (2/3)
@psifertex It's not, but for testing I mostly use those two libraries (compiled with MSVC):
- https://t.co/mCD1qPnPIJ (both AVX and SSE)
- https://t.co/l7EcYlqr8C
Pushed yet another small update to unxorer, this time improving performance by a bit (std::move skill issue)
Submitted it to the official Hex-Rays plugins list as well. I hope they will eventually allow you to download and install plugins automatically from within IDA itself.
Last Seen Users on Sotwe
👑تيتو👑
Seen from Egypt
shomat mamat
Seen from Malaysia
แอบถ่ายหีแม่ใต่ผ้าถุง โชว์กางเกงในแม่ เย็ดกับแม่
Seen from Thailand
🌺🌺แม่ไก่ หีกระมัง 🌺🌺
Seen from Thailand
NGUYỄN Thái
Seen from Thailand
love older granny and oldmom 60-80 up I am men
Seen from Germany
BITCOIN OBAMA || IQ OBAMA (Account banned arc) 
Seen from Indonesia
مصرية جامده نار 💋
Seen from Egypt
Türboo
Seen from Turkey
さぶリザ
Seen from Japan
Most Popular Users
Elon Musk
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.6M followers
KATY PERRY
@katyperry
86.8M followers
Taylor Swift
@taylorswift13
80.6M followers
Lady Gaga
@ladygaga
72.2M followers
Kim Kardashian
@kimkardashian
69.4M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.6M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.1M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
59.9M followers