Hiding video streams inside PNGs uploaded to Google Drive: medium.com/@laurentmeyer/… (But what does the m3u8 look like? How does it get the browser to skip the PNG header?)

I've never seen any goodware using #cassandra protector #cyax....in fact now it looks actively involved in the infection process. A simple #yara sig here: pastebin.com/Mw0GC4su Related reference: blog.trendmicro.com/trendlabs-secu… hash b7df0e871a82acea59e1a5c4e88e796e on MalShare

Gomorrah stealer group, or an individual who purchased Gomorrah stealer, left the panel source code exposed online. We have added it to the VXUG Panel source code collection. Thanks to Dee for sharing the exposed domain. You can check it out here: github.com/vxunderground/…

The slides for my Black Hat talk "XMPP Stanza Smuggling or How I Hacked Zoom" are now available at blackhat.com/us-22/briefing…

Just released LevelDB Recon v1.0.0.31 with some bug fixes, adjustments, & a new customizable pre-defined filter. ArsenalRecon.com #DFIR

PSA: An official #BinDiff that works with IDA 9.0 will be a bit delayed. Good news is that there's a github.com/google/binexpo… for BinExport that should allow to use BinDiff manually. Hex-Rays SA

iOS 18.1 added an implementation of the auto-reboot timer for locked devices we've been using in GrapheneOS since June 2021: chaos.social/@jiska/1134478… This was one of our early generation protections against forensic data extraction. We added a lot more protections this year.

Superfashi wrote the FLARE-On challenge writeup gmo-cybersecurity.com/blog/flare-on-…

Oh nice, my Binary Ninja Wrapped 2024 is in!!

Mountain Lion joins the party!

The latest version of `ipsw` adds a 🆕 `pkg` command to analyze and extract files from an Apple Package file (.pkg) Check it out! 🎉 (I had to write a HFS+ parser 🤮) github.com/blacktop/ipsw/…

Just released Anya beta 10! 1) Added Alcatraz A0/B0 (Apple A7) & Gibraltar B0 (T2) support - just for their SEP 2) Added Coll A0 (A17) support (that was tough) 3) Little improvements here and there in control utilities github.com/NyanSatan/Anya

iPhone 16e IPSW firmware is available for download C1 firmware : Firmware/c4000v59/Release/patched/ftab.bin Uses cL4 kernel as expected

Hey guys! let me introduce Xenex, A Powerful custom code-injection framework for iOS!! This is my first time making frameworks sooo it might be buggy or something 😁 Pull Requests are appreciated! so let me know if you can improve it! github.com/speedyfriend43…

Can you spot the bug? The goal is to leak the secret.

Calle Svensson alloc_pages + set_memory_x

Improved bypass for Windows 11 OOBE: 1. Shift-F10 2. start ms-cxh:localonly Only required on Home and Pro editions.

iOS 16 under Virtualization framework youtu.be/yuOcZyeUyN0

🔒💻 New malware alert called Pentagon Stealer! 🚨 This rogue software is stealing sensitive data ⚠️ Protect your systems, stay informed, stay safe! #CyberSecurity #DataProtection #PentagonStealer 🛡️🌐 any.run/cybersecurity-… #anyrunptk

Given the recent events with VMPSoft DMCA'ing educational YouTube videos demonstrating how to unpack malware protected with VMProtect, we have decided to release a free to use unpacker which works for all versions of VMP 3.x including the most recent version. Simply sign