al3x's Avatar

al3x

@cyb3rkitties.bsky.social

they/she. spreader of virtual kitties. πŸ±β€© reverse engineering ⚫️ threat intelligence ⚫️ malware ⚫️ security research ⚫️ snoring cats occasionally climbing. good food always. naps are underrated.

530 Followers  |  203 Following  |  36 Posts  |  Joined: 04.07.2023  |  1.924

Latest posts by cyb3rkitties.bsky.social on Bluesky

They also covered the People of Color in Cryptologic History honoreesβ€”like Wash Wong and Ralph Adams.

02.02.2025 13:50 β€” πŸ‘ 1693    πŸ” 397    πŸ’¬ 40    πŸ“Œ 12
Post image

Fellow NSA - National Security Agency veterans. Look at what’s happened at the National Cryptologic Museum. They covered up with brown paper the photos of Women in American Cryptology. All in response to President Trump’s anti-diversity executive order.

02.02.2025 04:51 β€” πŸ‘ 12587    πŸ” 6795    πŸ’¬ 948    πŸ“Œ 1438

me: β€œso you want to transition from IT to security. what do you wanna do in security?”

person on the internet: β€œdefense analyst…security analyst”

me: β€œa security analyst can include soc, grc, ir, vulnerability assessment/management, etc. so, what do you wanna do in security?”

26.01.2025 19:36 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
a blurred image of a desert landscape with trees and bushes ALT: a blurred image of a desert landscape with trees and bushes

meanwhile false positives:

11.12.2024 14:54 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

okay, serious question: why don’t enterprises mandate default adblockers for all users? would it not avoid headaches and a good chunk of credstealing/malware download opportunities?!

11.12.2024 14:35 β€” πŸ‘ 2    πŸ” 1    πŸ’¬ 1    πŸ“Œ 0
Preview
Syria Live Updates: Rebels Breach Key City of Homs, Monitor and Fighters Say

syria: β€œdef joining the party”

www.nytimes.com/live/2024/12...

07.12.2024 23:45 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

A Russia/Iran-backed coup of senior Assad regime officers seems to be underway in Damascus. If they’re successful, and they can prevent a conflict with the opposition forces, it will allow them a say in any negotiated settlement.

07.12.2024 22:53 β€” πŸ‘ 393    πŸ” 85    πŸ’¬ 22    πŸ“Œ 8

After annulling the first round of the presidential election, Romanian authorities have now raided a local man paying influencers to support the pro-Kremlin candidate--which is against the law in Romania.

www.agerpres.ro/justitie/202...

07.12.2024 11:31 β€” πŸ‘ 51    πŸ” 19    πŸ’¬ 2    πŸ“Œ 0
Preview
Romania Scraps Election After Russian Influence Allegations The presidential election was canceled after the government accused Moscow of a TikTok campaign to propel a pro-Kremlin candidate to the fore.

romania: β€œcheers y’all”

www.wsj.com/world/europe...

06.12.2024 14:53 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

international affairs genie: β€œhey, it’s almost the end of the year, how bout we all chill out and take a breather?”

south korea: β€œlmao too late”
france: β€œhold my beer”

05.12.2024 14:40 β€” πŸ‘ 3    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0
Preview
South Korea’s defence minister resigns over martial law crisis Defence minister’s resignation follows brief martial law declaration and as Russia-North Korea pact comes into force.

well, this was interesting to say the least. a spectacularly failed β€œself coup”.

www.aljazeera.com/news/2024/12...

05.12.2024 13:20 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
04.12.2024 15:57 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image

For anyone interested in detection and prevention methods against Salt Typhoon intrusions targeting communication providers, here is a comprehensive guide:

media.defense.gov/2024/Dec/03/...

04.12.2024 14:37 β€” πŸ‘ 53    πŸ” 37    πŸ’¬ 2    πŸ“Œ 1

It is the biggest con in cyber security, hands down. There is *no data* that it changes cyber security *outcomes.*

I theorize that most people intuitively know this, but because "improving click rate" is easy to track (and game), many performatively champion it as a "good metric" for security.

28.11.2024 13:43 β€” πŸ‘ 87    πŸ” 12    πŸ’¬ 21    πŸ“Œ 2

nice, love polarproxy! in one of my setups, i had a dedicated ubuntu vm that i used as dns/gateway and proxy with polarproxy. that way i could log any actual traffic from any of the vms 😊

28.11.2024 14:06 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

also, what’s everyone’s favorite IDE for C++ on non-Win systems? i don’t do any complex stuff (max handling 3-4 classes per project). been using CLion and i don’t dislike it, but sometimes it acts up/crashes for no reason.

26.11.2024 22:59 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
a close up of a white cat 's face with blue eyes looking at the camera . ALT: a close up of a white cat 's face with blue eyes looking at the camera .

ah, the joys of building hash tables that refuse to populate.

26.11.2024 22:52 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0
Preview
Game of Emperor: Unveiling Long Term Earth Estries Cyber Intrusions

more fun malware to add to the reversing list

26.11.2024 14:43 β€” πŸ‘ 1    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0

tools and guides listed by @eff.org are excellent for privacy:

www.eff.org/pages/tools

26.11.2024 00:26 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image

#SaltTyphoon

25.11.2024 17:18 β€” πŸ‘ 37    πŸ” 3    πŸ’¬ 1    πŸ“Œ 2
Preview
homer simpson is sitting in a chair with his arms crossed and his eyes closed . Alt: homer simpson is sitting in a chair with his arms crossed, whistling nonchalantly.

most early stage startups be like

24.11.2024 12:07 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

show opinions needed!

last week i finally watched β€œdune: part two”, liked it, and now wondering about dune: prophecy. anyone watched it? is it a yay, nay, or meh?

23.11.2024 23:01 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

πŸ‘‹πŸ‘‹

23.11.2024 22:06 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

tho i think, especially with DPRK IT workers fraud, people are starting to understand how nation-states can pursue strategic objectives even through financially motivated ops. so maybe perspectives are changing?

23.11.2024 12:04 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Nearest Neighbor? Espionage. www.wired.com/story/russia...

Salt Typhoon? Espionage. wapo.st/3CHK3dQ

GRU’s use of Moobot? Espionage. www.justice.gov/opa/pr/justi...

MSS hack of MSFT? Espionage. www.cisa.gov/sites/defaul...

SolarWinds? Espionage. www.lawfaremedia.org/article/sanc...

23.11.2024 04:51 β€” πŸ‘ 24    πŸ” 7    πŸ’¬ 0    πŸ“Œ 0
Chicken wings catπŸ”!! dance video ft.Kandy😹 |Subscribe #shorts
YouTube video by Itz me Kandy Chicken wings catπŸ”!! dance video ft.Kandy😹 |Subscribe #shorts

hello, hi, happy #caturday! can we please bring back the chicken wings cat dance trend? pretty please?

youtube.com/shorts/ETIs_...

23.11.2024 11:51 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Awesome research ! - The Nearest Neighbor Attack: How A Russian #APT Weaponized Nearby Wi-Fi Networks for Covert Access - @volexity.com - www.volexity.com/blog/2024/11... #cyberespionage

23.11.2024 08:32 β€” πŸ‘ 13    πŸ” 5    πŸ’¬ 2    πŸ“Œ 0
Preview
Reversing Engineering a NES Game With Ghidra The home of reverse engineering enthusiasts. Learn about RetroReversing and join the community today!

Check our our introductory post on Reverse Engineering a NES / Famicom game with Ghidra using the excellent NES decompiler plugin.

23.11.2024 11:19 β€” πŸ‘ 1    πŸ” 2    πŸ’¬ 0    πŸ“Œ 0
Preview
exploits.club Weekly Newsletter 48 - FireFox Animations, OOO bugs, LibAFL Advanced Fuzzing, and More Welcome to all our new readers filtering in this week from the Paged Out! #5 community ad. We are happy to know you share our affinity for extremely poor graphic design. Annnnyways πŸ‘‡ In Case You Mis...

what!! this is neat. didn’t know they had a weekly newsletter on vulnerability research 🀩

blog.exploits.club/exploits-clu...

22.11.2024 21:29 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Screenshot of malicious spam (malspam) with malware file attachment.

Screenshot of malicious spam (malspam) with malware file attachment.

Traffic from the XLoader (Formbook) infection filtered in Wireshark.

Traffic from the XLoader (Formbook) infection filtered in Wireshark.

2024-11-22 (Friday) #XLoader / #Formbook: I've been fired by my non-existent HR department. At least I got a "salary-receipt.exe" bazaar.abuse.ch/sample/003b5...

Tria.ge and Any.Run don't identify the malware, but Joe Sandbox does: www.joesandbox.com/analysis/156...

Also runs in my lab just fine

22.11.2024 19:42 β€” πŸ‘ 17    πŸ” 10    πŸ’¬ 2    πŸ“Œ 0

@cyb3rkitties is following 20 prominent accounts