In case you missed it, check out my Youtube channel with videos mostly related to Windows Internals: https://t.co/CNxqmDHhQU.

🚀 It’s official — my new book is live on Amazon: MAoS – Malware Analysis on Steroids This book is not like the others. It’s built on years of raw, hands-on research, reverse engineering sessions at 3 AM, and real-world incident response cases. Inside, you’ll find full A–Z

Missed the interview with $SNES CEO and CFO? The full interview is now available on @YouTube. Watch here 👇 https://t.co/hb6ghpNdy4

20 years ago, I read Andre Lamothe's "Tricks of the Windows Game Programming Gurus", the first book of its kind to teach low-level game programming and Windows design. Can AI modernize this code to run on modern Windows PCs? See my blog here: https://t.co/pPOuCumqkL

New blog post of me analyzing a crash dump with the bugcheck 0x9F. Root cause was a power IRP timeout in RAS SSTP during a device removal. The post walks PnP locks, the stuck IRP, and more, including my thought process. Check it out here: https://t.co/Vm2Da3TJXy

Ever wondered how Process Explorer builds the process tree? I wrote a guide on how to code your own in C++. We cover PID reuse, parent vs. creator, recursion, and more. Read it here:

Hailey Bieber’s Rhode could’ve dropped this million-dollar ad (they honestly should). Made on invideo for $100, that’s IT. Single prompt to million-dollar ad for your business. What are you creating today?

Out-of-process is not feature-complete yet, but it has a very significant impact on performance. When testing startup, I immediately notice if I accidentally switch back to in-process. I hope we can enable it by default soon.

@infoSecSki @zodiacon Yes, we offer Students & Freelancers discounts on all of our on demand products. The EDR Internals workshop specifically is already sold-out for the current dates. You should register to the waitlist and get updates if and when it's scheduled again.

Added my implementation of file/directory hiding kernel driver. https://t.co/xVBUFYSLJw

Update #1: Labor Day + September 1st = Double celebration TrainSec students get 35% off all Learning Paths until Sept 14. Code: LABORDAY25. Update #2: EDR Internals sold out → Join the waitlist for more dates: https://t.co/IVEgVbS27p Update #3: New article by @zodiacon:

I just released a new video: How WSL 1 Works. In this video, I explain how Windows Subsystem for Linux version 1 runs ELF binaries. https://t.co/s47zjYL9md

Hardware Hacking Expert Level 2 led by @The_H1tchH1ker is coming soon, starting with the Advanced UART Hacking module. Students of Level 1 will receive a significant discount when Level 2 launches. https://t.co/UTYlZJbRG7

Kernel allocation tags in Windows—why they exist and how to use them for debugging and forensics. New video + blog post from Pavel Yosifovich, free in the TrainSec Knowledge Library. Watch & read:

Ever wondered what really happens when you delete a file in Windows? In the new video, Pavel Yosifovich traces every step. Watch the deep dive:

The sun’s still shining and so is our Summer Sale! ☀️ Level up with Update Courses - online programs for .NET developers by .NET developers: @konradkokosa • @Scooletz • @lukaszpyrzyk • @danielmarbach • Stephen Cleary • @marcgravell • Sebastian Solnica • @KooKiz •

Windows 10 System Programming, Part 1 by Pavel Yosifovich is on sale on Leanpub! Its suggested price is $37.95; get it for $21.56 with this coupon: https://t.co/IKyUgV8Mjm @ZODIACON

Hi all - I'm hiring a Principal Security Researcher who has strong knowledge in Active Directory and Entra ID. Are you interested in spending time to find the next ZeroLogon or BadSuccessor equivalent, as well as helping our product to improve? Go apply:

dear imgui 1.92.2 release https://t.co/PErbkOHthD - improving tab bar resizing logic (combining shrinking and scrolling). - misc keyboard nav fixes, table fixes, font fixes & many others. - backend fixes (vulkan+linux w/ some drivers, SDL_GPU use SDL_GPUTexture* as texture id).

Indiana Hoosiers Shirt of the Month Get officially-licensed Indiana Hoosiers T-shirts, long-sleeve & hoodies monthly

Just published my new article in the TrainSec Knowledge Library: "Two Sides of the Same Coin – From Dissected Malware to EDR Evasion" Understanding how malware works is key to learning how to bypass and defend against EDR. A must-read for TrainSec students. Read here:

https://t.co/E4eMyl9tee

New issue of .NET R&D Digest is here! Thanks to @bzogrammer, @damekdavis, @sogrady, @iximiuz, @andrewlocknet, @meziantou, @STeplyakov, @KentBeck and other great and talented authors for making amazing content! https://t.co/rSgWPhkejJ #dotnet

New video by @zodiacon: set up real kernel debugging for a Windows VM in minutes. From bcdedit to live breakpoints in WinDbg—watch the walkthrough and start debugging the kernel. Full guide + courses at TrainSec https://t.co/d8PzSvXGw9