Archive

2022

January

CVE-2021-4034 — PwnKit

2021

September

Economic of Offensive and Defensive Development

August

Conti Leak Analysis

June

Ransomware as a Service With REvil (ESXi variant)

Ransomware Tradecraft With LockBit

Process Ghosting

May

Operation Neptune Spear

April

The Art of Psychological Warfare

Forrester Wave for MDR and Threat Intelligence Services Note

Facebook Breach 2019

2020

November

Code Note 0x3: DDoS as a Service

October

APT 41 Indictments

iPhone/iOS Anti-Forensics Note

August

Google Technical Writing Course

Ghostwriter Campaign Note

June

Unpopular Opinion: On Maze Ransomware

The Incident Response Hierarchy of Needs

May

Code Note 0x1: DeathRansom

April

Problems in CVE-2020-0796 Scanner Scripts

March

Integrating BinExport with GhiDra

February

Enhancing Host File with PortProxy

January

SHA-1 is a Shambles

2019

November

Arbitrary File Write and DiagHub Exploit

Quick Note on Nanocore Tradecraft - A Double ZIP File

October

September

Ask Andrew W.K.: My Dad Is a Right-Wing Asshole

June

Story of Unknown ATM Malware, Thai’s Bank and Attribution

April

Quick Note on Phobos Ransomware

February

Lead by Example Isn’t a Problem

January

Deploy Your Own Local MISP with HTTPS Supported by mkcert

Endpoint Protection, Detection and Response Bypass Techniques Index

2018

December

Understandings on .SettingContent-ms as aื Initial Access Vector

My Forked Version of msfrpc with Python3 Support

Short Summary of NIST SP 800-63B on Strength of Memorized Secrets

Adversary Mindset and Kobayashi Maru Exericse

What Does Nation-State Attacker Looks Like: Russian Tradecraft In 2016 U.S. Elections