joxeankoret.com
Joxean Koret - Projects
http://www.joxeankoret.com/index.html
MultiAV Scanner Wrapper (Python API). MultiAV Python API. It can scan a file or directory with multiple AV engines simultaneously. It uses, with the only exception of ClamAV, the command line AV scanners and extracts the malware names from the output of the command line tools (for ClamAV it uses the pyclamd. Avast: Very slow, only enabled when running all the engines. AVG: Fast, because it requires avgd daemon to be running. McAfee: Very slow, only enabled when running all the engines. Code path searchin...
samsymons.com
A Reverse Engineering Reading List | Sam Symons
https://samsymons.com/blog/a-reverse-engineering-reading-list
A Reverse Engineering Reading List. One of my hobbies is taking apart binaries and figuring out how they work. It is really satisfying to take a program and break it apart, before reassembling the pieces in a way that you understand. There are so many resources for picking up this stuff that it seemed like a crime to not collect it in one place. Which is enough to get started. The subject of disassemblers is a little more complicated. IDA Pro. Is a good one, and a personal favorite is radare2. There are ...
blogtss.es
Blog de TSS: febrero 2015
http://www.blogtss.es/2015_02_01_archive.html
Domingo, 22 de febrero de 2015. Hoy os copio y pego un post muy interesante y sobre todo, muy preocupante.después hablan de que la palabra "picardía" sólo existe, en español, griego e italiano.Pues parece que en otros paises también se estila.o bien deberíamos hablar de delincuencia organizada? La noticia, y sobretodo la imagen, es sobrecogedora, con más de un millón de aplicaciones en la App Store. Las cuales compiten por el dinero y la atención de millones de usuarios de los dispositivos de Apple.
blog.48bits.com
48Bits Blog » Blog Archive » Grasias por la WiFi primo!
http://blog.48bits.com/2012/05/02/grasias-por-la-wifi-prim/trackback
Random IRC quote :. Que 48bits ya no se va a actualizar mas porque todos sus redactores han ido a trabajar al periodico La Razon. Problemas del análisis de código. Aero Series – Introducción. Grasias por la WiFi primo! EDIT: El router es un Comtrend AR-5381u distribuido por Jazztel. Nota: Esta es una historia real basada en hechos ficticios. Me conecté al Router y comencé a probar las N combinaciones de cuentas de administrador que me conocía y alguna más que busqué por la web:. El siguiente paso fue int...
mrexodia.cf
Links - mrexodia's blog
http://mrexodia.cf/links.html
Coding and other geeky stuff. 2016 Mr. eXoDia with help from Jekyll Bootstrap. And The Hooligan Theme.
dedola.eu
dedoLa
http://www.dedola.eu/news.php
Unknown Bidder Buys 2,700 Bitcoins (worth $1.6 million) at US Government Auction. A winning anonymous bidder bought 2,700 Bitcoins (worth roughly $1.6 Million) in an auction held by the United States Marshals Service (USMS) on Monday. The US government announced at the beginning of this month its plans to auction 2,719 Bitcoins that were seized during several criminal, civil and administrative cases like Silk Road. The US Marshals confirmed to CoinDesk that four bids were. Here’s How to Fix It. Leaked Ex...
joxeankoret.com
Pyew! A Python tool to analyze malware | Unintended Results
http://joxeankoret.com/blog/2010/02/08/pyew-a-python-tool-to-analyze-malware
A Python tool to analyze malware. Working in a disassembler with code analysis to speed up (graph) analysis of malware dumps (malware dumped from memory while running) I decided to write a tool using this core oriented to malware analysis and the result is Pyew. Pyew is a tool like radare. It’s an hexadecimal viewer, disassembler for IA32 and AMD64 with support for PE and ELF formats as well as other non executable formats, like OLE2 or PDF. In the project’s page. You may find usage examples. Just to sho...
blog.malwaremustdie.org
Malware Must Die!: MMD-0030-2015 - New ELF malware on Shellshock: the ChinaZ
http://blog.malwaremustdie.org/2015/01/mmd-0030-2015-new-elf-malware-on.html
Semper legerent "Salve Regina" ante venatione malware. Wednesday, January 14, 2015. MMD-0030-2015 - New ELF malware on Shellshock: the ChinaZ. The bash Shellshock vulnerability ( link. Is still proven to be one of the fastest way to spread ELF malware infection to NIX boxes in internet, along with Linux systems which are still having the vulnerable version. This fact that is not knowing only by internet security folks, but by the threat actors themself. Since firstly reported in this blog ( link. The att...
SOCIAL ENGAGEMENT