Working on #flareon6 bmphide, so far I'm only able to extract encrypted/compressed data. There must be something I'm missing.

Solving #flareon6 ch12 in a single tweet: strings -el help.dmp | grep flare-on.com

Volatility #PluginContest #Contender: toastplugin by Rolf and Max de Bruijn extracts Windows Toast notification artifacts. It enables volatility to enumerate valuable insights into user and system activity. #DFIR #memoryforensics

Operation Wocao: shining a light on one of China's hidden hacking groups. fox-it.com/nl/actueel/whi…

An implant dropper dubbed #ComRATv4 recently attributed by Cybersecurity and Infrastructure Security Agency and FBI to Russian sponsored APT, Turla. It was likely used to target ministries of foreign affairs and national parliament. USCYBERCOM Cybersecurity Alert continues to disclose #malware samples on: virustotal.com/en/user/CYBERC…