🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

My team (AI Systems Security) at Google Zürich🇨🇭is hiring a Security Engineer for AI Vulnerability Research! We're looking for experts to tackle asset exfiltration, tampering and computational resources abuse. Apply: google.com/about/careers/…

Here's an old article on building a gameboy emulator in C! A bit old, but the gameboy architecture hasn't changed, and you can learn a lot of low-level knowledge from this. Enjoy!

21 maja doszło do wycieku danych ze sklepu internetowego sieci Spar. Szczegółowych okoliczności na razie nie znamy.

Mark Your Calendar: APT41 Innovative Tactics cloud.google.com/blog/topics/th…

The final part of j00ru//vx’s Windows Registry series is live! Contains all the hive memory corruption exploitation you’ve been waiting for googleprojectzero.blogspot.com/2025/05/the-wi…

Working with the JVM or just curious how to dig deeper into it? Marc’s Dynamic Analysis of JVM Processes from RE//verse 2025 is a good one to queue up. Give it a look: youtu.be/yzcNJn_EOwg?fe…

Looks like BlueHat IL talks are online now, so here’s my talk for anyone who wanted to learn about the latest episode of KASLR and couldn’t make it: youtu.be/Dk2rLO2LC6I

Virut part II: process infection and NTDLL hooking 🦔📹 ➡️x64dbg scripting ➡️conditional breakpoints ➡️more import table resolving ➡️fixing control flow ➡️marking up hook code #MalwareAnalysisForHedgehogs #Virut youtube.com/watch?v=nuxnvj…

IT Security Weekend Catch Up – May 31, 2025 badcyber.com/it-security-we…

🔥 TitanHide has been updated to support the latest VMProtect 3.9.4 changes! The service name is now used as the device name as well, so the check for \\.\TitanHide will fail if you name the service differently 🧠

So, you want to write a Windows driver in Rust ? fluxsec.red/rust-windows-d… By flux

Good morning! Just published a deep dive into PatchGuard internals: how it works, key internal functions, context init, and possible bypasses. r0keb.github.io/posts/PatchGua…

We released new Pwndbg: github.com/pwndbg/pwndbg/… ! It brings new kernel commands for dumping heap allocator info, display of not taken branches (X marker) in disasm, better disasm for ARM/MIPS/LoongArch64, initial s390x support & more! Sponsor us at github.com/sponsors/pwndbg !

MalDev Myths ? what you need to know about ? blog.deeb.ch/posts/maldev-m…

CapLoader 2.0 released today! 🔎 Identifies over 250 protocols in #PCAP 🎨 Define protocols from example traffic 🇶 Extracts JA3, JA4 and SNI from QUIC 💻 10x faster user interface netresec.com/?b=256dbbc

🚨 Alert: Stealthy #Rhadamanthys slips past detection in large installer files The notorious infostealer - Rhadamanthys - has been evading major AV / EDR vendors on VirusTotal by hiding in trojanized software. The installer has a glommed OpenVPN certificate, pulls the next-stage

Finally had some time to publish these blogs. Enjoy! Spying On Screen Activity Using Chromium Browsers mrd0x.com/spying-with-ch… Camera and Microphone Spying Using Chromium Browsers mrd0x.com/spying-with-ch…

I haven't been publishing much lately, but not because I haven't been doing research -- in fact, I've done more than ever in the past five years. My ~200KLOC backlog will soon begin trickling out into the IDA/Hex-Rays ecosystem.

🛠️ Tracing API Calls With Tiny Tracer 🧩 Utilize Intel's pin tool for code control 🔍 Bypass RDTSC checks, detect anti-debug API 🔗 Identify Original Entry Points (OEP) quickly 🧩 Unpack binaries, find hidden code sections 👉 guidedhacking.com/threads/tiny-t…

Recon 20th year anniversary is almost upon us, and we just realised we got our first a copyright Strike on Youtube on one of our last year video. I guess VMProtect is not happy about Holger Unterbrink talk. We will release the video soon directly on our website. Stay tuned.