If you like the project you can vote for NOVA on the #SANSDMA survey.sans.org/jfe/form/SV_6f…

I need this mirror for my bathroom 😍

Has anyone ever seen or used this evasion technique? I have been using it for many years and still find it effective (particularly with macro's), so I was surprised to see it continue to work so I decided to document it on Unprotect : unprotect.it/technique/indi… Feedback appreciated!

cf : Thomas Roccia 🤘

Check out this new entry in the #UnprotectProject by my friend Jean-Pierre LESUEUR! 😎 *Indirect Memory Writing* for example an attacker calls standard Windows APIs that accept an output pointer. You can point that pointer at executable memory. The attacker can then build a payload

New code snippet added that demonstrates the principle of indirectly copying a buffer to another memory region using the Windows APIs ReadProcessMemory (Example 1) or ReadFile (Example 2): unprotect.it/snippet/indire…

🤩 Check out DetectionStream built by Kostas, this is an app where you can explore Sigma and NOVA rules! There is also a playground so you can test the rules live 👉 detectionstream.com

There is still time to vote for NOVA in the #SANSDMA awards under Innovation of the Year! 👉 Vote here: survey.sans.org/jfe/form/SV_6f… And if you want a quick overview of NOVA (Hollywood style), check out this video 👇 youtu.be/HDhbqKykc2o?si…

🤓 I built a quick interface to define and show the classification of Adversarial Prompts (IoPC)! The 4 main categories are: Prompt Manipulation, Abusing Legitimate Functions, Suspicious Patterns, and Abnormal Outputs. Each covers threats you should detect in your AI system

Here is the link jupyter.securitybreak.io/IoPC/Adversari…

Here is the link 👇 jupyter.securitybreak.io/IoPC/Adversari…

🚀 Optix Gate 1.2 released and introduces the Registry Manager and includes multiple bug fixes and quality improvements: github.com/DarkCoderSc/Op… ; ✨ You can support the project by starring the repository, it's a meaningful signal that the project is relevant and valuable ✨

🤩 I am honored to be nominated for the French-Australia Award in Research & Innovation (by Le Courrier Australien) after the SANS DMA Award nomination! If you found my work useful, you can vote below, it takes 10 sec and it would mean a lot! ❤️ Vote here: lcanews.com/research-innov…

👀 A malicious MCP server spotted in the wild! The Postmark MCP server (used to send and track emails through Postmark API) introduced a suspicious behavior in version 1.0.16. The attacker cloned the legitimate Postmark MCP code and added a malicious BCC line, then published it

🧐 OpenAI released a new report on how threat actors use GPT models. Phishing, malware development, info ops, and scams are on the menu! They added 3 new LLM TTPs that describe how attackers use LLMs for their attacks. - LLM-Assisted Post-Compromise Activity - LLM Guided

🤓 I created a new community project dedicated to Adversarial Prompts called PromptIntel. PromptIntel is a public and free database that helps you: ・ Explore and classify adversarial prompts taxonomy ・ Contribute new prompts from your research ・ Access a live feed with

PromptIntel is part of the NOVA ecosystem and you can access it here: promptintel.novahunting.ai

My DEFCON talk about cryptomoney laundering techniques is out! At minute 20:30, I demonstrate how I use an AI agent to assist my investigation in money tracking and laundering pattern identification. Then I discuss the limits and possibilities 🤓 youtu.be/1uNneo9L_jU?si…

👀👀

🚀Optix Gate 1.3.0 Released: Introducing Content Reader: instantly view remote files in a paginated, read-only hex editor. Extract ANSI/Unicode strings, handle any file size without download. Integrated in file manager with manual streaming option: github.com/DarkCoderSc/Op…