Thank you! I havenβt looked into writing yara x modules yet, but was thinking about a strelka scanner. Def going to see about yara x now though thatβs a great idea
23.10.2025 19:00 β π 1 π 0 π¬ 1 π 0
PDFs have been a constant struggle and Iβve found that this helps. Might be a little biased tho
23.10.2025 18:19 β π 3 π 2 π¬ 1 π 0
Iβll be presenting at #GrrCON this year about some weird pdf detection ideas Iβve been messing with. Swing by and tell me your file format
30.09.2025 13:40 β π 3 π 1 π¬ 0 π 0
People love people who use ms paint.
13.06.2025 20:34 β π 0 π 0 π¬ 1 π 0
Itβs a strong bug.
We donβt need AI for shitty art
30.05.2025 00:32 β π 4 π 1 π¬ 0 π 0
Idk about yβall but I donβt plan on giving RU ops a free pass into our customer networks just because some ding dong says they arenβt a threat
If anything I might just wanna burn them with more prejudice out of spite for both regimes
01.03.2025 14:29 β π 36 π 9 π¬ 3 π 3
Check this episode out to hear about image lures and how we can detect them
25.02.2025 17:57 β π 5 π 1 π¬ 2 π 0
www.virustotal.com/gui/file/f2a...
Also expecting to see indiandefenceforces[.]link soon
10.02.2025 18:57 β π 0 π 0 π¬ 0 π 0
Havenβt seen PDFs for this yet but a new domain popped: defenceindia[.]link
04.02.2025 14:10 β π 0 π 0 π¬ 0 π 0
departmentofdefence[.]link π§
30.01.2025 13:37 β π 0 π 0 π¬ 1 π 1
threatresearch/yara/zip_file.yara at master Β· EmergingThreats/threatresearch
I wanted to call this repo "Nuclear Football Codes". I was outvoted.. - EmergingThreats/threatresearch
Yara rule to match concatenated zip files. I like this one (biased) because of how we are able to avoid matching nested zip files.
More info: x.com/threatinsigh...
#yara github.com/EmergingThre...
19.11.2024 21:09 β π 15 π 7 π¬ 2 π 1
Current campaign: Nethermurk! New episodes every other Tuesday. www.rudetalesofmagic.com
cyber(punk) threat intel. cyber operations, counterintelligence, russia, iran. i see kanly today in everything. βbloody inertia interspersed with bouts of bloody frenzy.β
creator: #FUZZYSNUGGLYDUCK, drilangleton, Beff Horn.
opinions are my own.
professional strings(1) operator
rust reverse engineering training -> @decoderloop.com
she/her or they/them
π³οΈβππ
personal account! views are mine.
https://cxiao.net
https://infosec.exchange/@cxiao
Official account of the State of Statecraft conference.
Coming October 28, 2025 - Brussels, Belgium
http://stateofstatecraft.com
THE AGENDA IS LIVE: https://stateofstatecraft.com/agenda
#what_is_sos
Security research and breaking news straight from ESET Research Labs.
welivesecurity.com/research/
fka @gabbyroncone on twitter. mission tech lead for RU & Eastern European APT ops @Google. views expressed here are mine, not my employerβs. she/her.
Working at Google TAG. Retired FreeBSD committer. May or may not be a robot.
β Cybersecurity reporter
β
Newsletters at Risky Business
#infosec #cybersecurity
https://risky.biz
Mayor-Elect of New York City
professional despondent masshole βΎππ
VIBEINT SME.
reluctant cyber poster. π¦
π‘οΈ
my therapist is probably sick of my refusal to accept reality.
Sen. Sanders of Vermont, Ranking Member of the U.S. Senate Committee on Health, Education, Labor & Pensions, is the longest-serving independent in congressional history.
Threat Research @ Proofpoint. Former @virtualroutes.bsky.social fellow. @warstudieskcl.bsky.social alum. She/her
π¦
ο£Ώ mach-o enthusiast
@ESET Distinguished Researcher | alum of McAfee, Microsoft MVP, Tribal Voice, Zultys | Mod @Lenovo, @Neowin.Net, Scots Newsletter forums | Intel Insider Council | Repost β endorse
malware detection and analysis, hunting and gathering, threat research
Americaβs Finest News Source. A @globaltetrahedron.bsky.social subsidiary.
Get the paper delivered to your door: membership.theonion.com
Reverse engineer at FLARE/Google | Pluralsight author | π± 1M+ views on YT | ποΈ Host of Behind the Binary podcast π
Proofpoint's insights on targeted attacks and the cybersecurity threat landscape.
