🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

LIEF 0.15.0 is released! You can checkout lief.re/blog/2024-07-2… for the details.

YARA-X 0.6.0 has been released. github.com/VirusTotal/yar…

We know many people, including those in the research community, value seeing previous versions of webpages when available. That’s why beginning today, we're adding links to the Internet Archive's Wayback Machine to our "About this result" panel, to give people quick context and

New #PEbear is out (v0.7.0) - with new icon, Qt6, ARM64 support and more goodies 😊! Check it out: github.com/hasherezade/pe…

どうもこれ、ファイルサーバーにIPアドレスでアクセスしてるとこうなるっぽい。FreeBSDで動いてる同一Sambaサーバーに「名前」でアクセスしてコピーしたときは更新日時等が維持されて、IPアドレスだとDL扱いになるわ。

.Volexity has developed a new #opensource tool, “HWP Extract”, a lightweight Python library & CLI for interacting with Hangul Word Processor files. It also supports object extraction from password-protected HWP files. Download here: github.com/volexity/hwp-e…   #dfir #threatintel

Blog entry about the new Mach-O module in YARA-X, by jacob ☕🦆⌨️. virustotal.github.io/yara-x/blog/us…

Larva-24005, 한국·일본 대상 피싱 공격 수행 #Kimsuky 하위 그룹인 Larva-24005가 국내 서버를 침해하여 피싱 인프라를 구축하고 북 연구 종사자 및 대학 교수를 표적으로 삼아 공격을 수행하고 있습니다. 자세히 보기: asec.ahnlab.com/ko/86522/ 안랩 위협 관리 분류 체계: ahnlab.com/ko/service/thr…

Larva-24005 (Kimsuky) sent phishing emails to Japanese people. My colleague wrote a post analyzing the server that sent the phishing mail. asec.ahnlab.com/ko/86522/ (Korean)

🚨 New i-Soon C2 infrastructure from DOJ indictment: Domains (Namecheap, hosted at Choopa/Vultr): * ecoatmosphere[.]org * newyorker[.]cloud * outlook.newyorker[.]cloud * heidrickjobs[.]com * maddmail[.]site * asiaic[.]org IPs: * 40.82.48[.]85 * 45.77.132[.]157 *

#PEbear (github.com/hasherezade/pe…) is now available via WinGet (learn.microsoft.com/en-us/windows/…)! You can install it easier than ever - just type: `winget install pe-bear` from Powershell.

11 years after XP's end-of-life we have decided to completely stop supporting operating systems older than Windows 10. The project will slowly transition to Visual Studio 2022 and Qt 5.15 with CMake, to make it easier for new people to contribute. Exciting updates are coming!

YARA-X v0.14.0 has ben released! github.com/VirusTotal/yar…

I also remember struggling with mounting LVM. It seems there are tools available now. hecfblog.com/2025/04/daily-…

Announcing the Official Parity Release of Volatility 3! volatilityfoundation.org/announcing-the… Volatility 3 has reached feature parity; Volatility 2 is now deprecated.

Pocket may be shutting down, but your saved articles don’t have to go. Bring them over to Inoreader and keep reading without interruption! Learn how to transfer your articles from Pocket in just a few steps 👇 inoreader.com/blog/2025/03/n…

DPRK

YARA-X is now stable! virustotal.github.io/yara-x/blog/ya…