🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

Verifying myself: I am nickchalard on Keybase.io. pliJ0NVzkViLK_JJUyiTXBBYABHyvO99NUqA / keybase.io/nickchalard/si…

InQuest Insider - April The InQuest Threat Exchange is an integration where anonymous hashes and vectors are pushed to the InQuest cloud. In turn, all newly seen hashes are queried prior to analysis. Subscribe to the newest issue of the InQuest Insider. inquest.net/newsletter

Wonder how registration-free #COM interop works and how #redteamer|s can use it to load #NET assemblies (using #ActCtx COM server in #PowerShell and #Jscript)? Read our new short blog post by Malwrologist inquest.net/blog/2019/5/30…

InQuest Insider - May InQuest constantly monitors command and control (C2) communications for signs of anomalous activity. Keeping abreast of the latest C2 nodes through threat intelligence is key for detecting this activity. Subscribe Here: inquest.net/newsletter

Check out Didier Stevens new tool amsiscan.py. amsiscan.py is a Python script that uses Windows 10’s AmsiScanBuffer function to scan input for malware. It reads one or more files or stdin. blog.didierstevens.com/2019/06/13/new…

Interesting #malicious #PowerShell uses #InstallUtil (.NET framework utility). InstallUtil loads a .NET bin that contains a class inherited from System.Configuration.Install.Installer. It overrides uninstall method. The method injects a shellcode into mem virustotal.com/gui/file/df9ab…

An awesome write-up from ohjeongwook of DarunGrim on leveraging Time Travel Debugging towards root cause analysis of a fuzzer triggered crash in Adobe Acrobat: darungrim.com/research/2019-…

Our new blog is out! Ransomware in Your Stocking, William MacArthur describes the increasing danger of ransomware going into the future. There are sample hashes and a map that shows the nationally widespread hits on state and federal utilities. inquest.net/blog/2019/12/2… #cybersecurity

PowerShell Without PowerShell! Read our newest blog from guest contributor @Valcan_K . He describes how to utilize LOLBins to bypass detection and execute arbitrary scripts on a target machine. inquest.net/blog/2020/02/2… #redteam #pentest #cyber

A sample from yesterday that not only uses COVID-19 context within the maldoc, but is targeting distance-learning students in Peru. #malware #coronavirus #COVID19 #COVID labs.inquest.net/dfi/sha256/a9c…

Verifying myself: I am nickchalard on Keybase.io. eRV8oq5WkD7OGN2czuHYrjKuZLnXIhLImieM / keybase.io/nickchalard/si…

My first blog with InQuest

Once again, Microsoft will be keeping the Defenders busy. Now to watch the wave of iterations, collect samples, and improve detection.... DDE --> Equation Editor --> CVE-2021-40444 Find useful info here: inquest.net/blog/2021/09/1… #CVE202140444 #0day Nick Chalard Dmitry Melikov

Probably the easiest CVE number to memorize, also scary enough to be hard to forget. Disable that ActiveX in Internet Explorer, also stop using Internet Explorer. 😆 Thanks for the support on this one William MacArthur Pedram Amini Josiah Smith Dmitry Melikov

We are sharing this visual for tracking threat actors/groups related to the current #ukraine conflict. The content was collected from various sources within the #infosec community. Special thanks to all involved. William MacArthur Nick Chalard J. A. Guerrero-Saade

An update our previous graphic we shared on the cyber-front of the #ukraine conflict. This content was collected from various sources and collaborations within the #infosec community. Special thanks to all involved. William MacArthur Nick Chalard J. A. Guerrero-Saade Jon Gorenflo 🇺🇦🌻

As a follow up to the previous graphic outlining threats affecting #Ukraine, here is a high level blog on observed threats. Big thanks to the #infosec community for making this possible, #SlavaUkraini William MacArthur Nick Chalard J. A. Guerrero-Saade Jon Gorenflo 🇺🇦🌻 inquest.net/blog/2022/04/0…

Battlefield - The award winning franchise from EA / DICE battlefield.com/battlefield-4?…

Do me a flavor & enter to win an ice cream social w/ me & Tritonal @Euphoriamusfest Do512 gvwy.io/q92rcpq

I follow @highcontrastrec for the #remixcompetition pack of Ronald van Gelderen track ‘This Way’ #TranceFamily popupstore.highcontrastrecords.com