I've decided to put a screenshot showing the hex editor view of a Turla Kazuar sample behind acrylic glass on my desk to always remind me, why I am doing all this . because I 💛 to be a pain in the neck of the bad guys .

RT @kimmonismus: The biggest problem with AI lies elsewhere than most people think. I wouldn't read too much into the article, but it does….

Generate videos in just a few seconds. Try Grok Imagine, free for a limited time.

RT @jamieantisocial: we were ｓｈｏｏｋ.

RT @birchb0y: reversing dprk malware 🇰🇵: hehe its all in this file! you're so welcome! have fun! 🥰. reversing cn malware 🇨🇳: actually go fu….

Good news - even the free THOR Lite detect the webshell that gets dropped by the POC

RT @vxunderground: "Scattered Lapsus$ Hunters (UNC3944)", have released an alleged SAP7 0day exploit onto Telegram. I can't confirm or den….

Everything becomes easier to digest once you turn it into a large infographic. Magically, even the most complex mess turns into a piece of cake.

RT @nixcraft: ACME Protocol automates the issuance and renewal of SSL/TLS certificates, making web security management more efficient. Let….

RT @Dinosn: Telco giant Colt suffers attack, takes systems offline

I guess it was the apartment of the UX designer who created the "Enable Content" button in the old MS Office products.

I keep seeing reports of attackers going after #ESX hosts – exporting VMs, cloning domain controllers, grabbing NTDIS files. Not really surprising. ESX often ends up being the quiet corner of the network where no one’s looking. Thing is: we’ve had some solid ways to deal with

“Your tweets look AI-generated.”. Yeah, maybe. But I wrote the blueprint in 2019. If AI mimics me, I take that as a compliment. All I use it for now is to fix grammar quirks from being a non-native speaker. Throwback to my blog post:.

RT @yo_yo_yo_jbo: New blogpost, this time about different ways to dump lsass. While not novel, I explain all techniques and uploaded a full….

RT @DarkWebInformer: gitGraber: Monitor GitHub to search and find sensitive data in real time for different online services such as: Google….

RT @kimmonismus: The reasons why DeepSeek r2 has been delayed:. Despite a team of Huawei engineers working on site, it was not possible to….

RT @nas_bench: [New Blog 📚] The Fragile Balance: Assumptions, Tuning, and Telemetry Limits In Detection Engineering. If you ever struggle w….

RT @BleepinComputer: Spike in Fortinet VPN brute-force attacks raises zero-day concerns - @billtoulas. https://t.co….

RT @Narcass3: hi. here is ican0220 or RokyangDeveloper0220!. Might also go by Xun Zhu . dev.zhu0712@gmail.com.icandev0220@gmail.com.https:/….

RT @_josehelps: now has SIEM queries and a tool section for those looking to operationalize the data. Thanks to @Cy….

I’m excited to announce two major upgrades in our free product line:. 📦 Archive scanning is now unlocked in THOR Lite - including docx, xlsx, jar, war, and more. 🧠 YARA Forge (my own project) is now integrated – extends the detection coverage with open source rules. 🔍 Also.

RT @TheHackersNews: 🚨 Active Exploit Alert:. A critical FortiSIEM flaw (CVSS 9.8) lets attackers run code without logging in — and hackers….