Python and Machine Learning: How to use algorithms to create yara rules with a malware zoo for hunting https://2018.pass-the-salt.org/files/talks/14-python-and-ml.pdf
We have seen machine learning is not magic, a work of featuring must be done including the of the dataset.
Here, our dataset is very heterogeneous with a big cluster of EquationGroup, and others clusters with few malwares
The machine learning is useful to make a first filter to clusterize a big dataset because the algorithms have been thought to be scalable contrary to algorithms which compare signatures. (ssdeep,impfuzzy,machoc...)
Доступен бета-тест отладчика ядра XNU для владельцев лицензий IDA Pro. Для работы требуетс достуи к сервисам Corellium.
Forwarded from Noise Security Bit
Supply Chain вектор огромен, всегда нужно помнить об этом. Не используйте рендомные зарядки для телефонов и прочего в публичных местах или от случайных людей (кстати это касается их покупки тоже 😜). Даже зарядки для лэптопа могут быть не так безобидны, как кажется на первый взгляд, особенно, если это USB-C 😱
https://twitter.com/_mg_/status/949684949614907395?s=21
https://twitter.com/_mg_/status/949684949614907395?s=21
Twitter
_MG_
BadUSB Cable #2. HID attack through an Apple MacBook USB-C charger. Great for shared workspaces! Build info coming this month. Still working out some things. These cables work on just about any device with a USB port (Mac/Win/Linux, phones too) https://t.co/b6254FvpLY
https://github.com/jnuyens/freedomev/
Unlocking the full potential of your Electric Vehicle. Freedom guaranteed.
Unlocking the full potential of your Electric Vehicle. Freedom guaranteed.
GitHub
GitHub - jnuyens/freedomev: FreedomEV repository. Unlocking the full potential of Linux on your EV!
FreedomEV repository. Unlocking the full potential of Linux on your EV! - jnuyens/freedomev
Forwarded from r0 Crew (Channel)
pac17.pdf
963.8 KB
ExploitMeter: Combining #Fuzzing with Machine Learning for Automated Evaluation of Software Exploitability
14-python-and-ml.pdf
855.4 KB
https://github.com/fr0gger/RocProtect-V1
Emulating Virtual Environment to stay protected against advanced #malware
Emulating Virtual Environment to stay protected against advanced #malware
GitHub
GitHub - fr0gger/RocProtect-V1: Emulating Virtual Environment to stay protected against advanced malware
Emulating Virtual Environment to stay protected against advanced malware - fr0gger/RocProtect-V1
https://github.com/fr0gger/vthunting
Vthunting is a tiny script used to generate report about #VirusTotal #hunting and send it by email, slack or telegram.
Vthunting is a tiny script used to generate report about #VirusTotal #hunting and send it by email, slack or telegram.
GitHub
GitHub - fr0gger/vthunting: Vthunting is a tiny script used to generate report about Virus Total hunting and send it by email,…
Vthunting is a tiny script used to generate report about Virus Total hunting and send it by email, slack or telegram. - fr0gger/vthunting
https://unprotect.tdgt.org/index.php/Unprotect_Project
The #database about #malware self-defending and protection
The #database about #malware self-defending and protection
Forwarded from r0 Crew (Channel)
MS Edge RCE (CVE-2018-8495). Chaining a few bugs in Edge to be able achieve remote code execution by mainly abusing custom URI schemes.
Article:
https://leucosite.com/Microsoft-Edge-RCE/
POC:
https://github.com/kmkz/exploit/blob/master/CVE-2018-8495.html
#browser #edge #rce #expdev #darw1n
Article:
https://leucosite.com/Microsoft-Edge-RCE/
POC:
https://github.com/kmkz/exploit/blob/master/CVE-2018-8495.html
#browser #edge #rce #expdev #darw1n
Leucosite
Edge RCE
(CVE-2018-8495) Chaining small bugs together to achieve RCE
Forwarded from r0 Crew (Channel)
An archive of low-level CTF challenges developed by j00ru over the years https://github.com/j00ru/ctf-tasks #ctf #reverse #dukeBarman
GitHub
GitHub - j00ru/ctf-tasks: An archive of low-level CTF challenges developed over the years
An archive of low-level CTF challenges developed over the years - j00ru/ctf-tasks