|
Paul Makowski
@
myhndl
San Diego
|
|
CTO @PolySwarm & @NarfIndustries
Tweets are mine. Unless they're good, then they're probably someone else's.
|
|
|
2.320
Tweetovi
|
681
Pratim
|
788
Osobe koje vas prate
|
| Tweetovi |
| Paul Makowski proslijedio/la je tweet | ||
|
vx-underground
@vxunderground
|
4. velj |
|
Friends,
@PolySwarm has been incredibly generous and have offered to aid us in our malware packaging. Moving forward, we will be introducing changes to our malware set to conform with their naming conventions.
Thank you from the bottom of my heart, Polyswarm. I am in your debt.
|
||
|
|
||
| Paul Makowski proslijedio/la je tweet | ||
|
Alex Stamos
@alexstamos
|
1. velj |
|
One of the better ideas I have heard of how social media companies can deal with state organs is to ban accounts tied to governments that don't allow free access to said social media site. If normal Chinese citizens can't post to Twitter/FB, the CCP shouldn't either.
|
||
|
|
||
| Paul Makowski proslijedio/la je tweet | ||
|
0verfl0w
@0verfl0w_
|
2. ruj |
|
Want to learn #malwareanalysis but don't know where to begin? Check out my online course designed for beginners starting off in #infosec @ 0verfl0w.podia.com/beginner-analy…! We cover everything from Assembly and Banking Trojans to Word Macros and Unpacking! 🔒 pic.twitter.com/sYl7JUQ9zv
|
||
|
|
||
| Paul Makowski proslijedio/la je tweet | ||
|
Lynn
@chordbug
|
28. stu 2017. |
|
things you hoped weren’t technically Turing-complete, but they are: MPEG-4 audio pic.twitter.com/lOW4ElYCB9
|
||
|
|
||
| Paul Makowski proslijedio/la je tweet | ||
|
Kostya Serebryany
@kayseesee
|
30. sij |
|
HWASAN (think of it as ASAN v2) has become available to developers on Android outside of Google. If you use C or C++ on Android, please give it a try. developer.android.com/ndk/guides/hwa…
HWASAN is also available on Aarch64 Linux with a recent kernel.
|
||
|
|
||
|
Paul Makowski
@myhndl
|
28. sij |
|
Hey there, perhaps @PolySwarm (PolySwarm.network) can help!
I'll slide into your DMs
|
||
|
|
||
| Paul Makowski proslijedio/la je tweet | ||
|
Dino A. Dai Zovi
@dinodaizovi
|
26. sij |
|
The claim in the FTI forensics report on Bezos’ iPhone that, “due to end-to-end encryption employed by WhatsApp, it is virtually impossible to decrypt the contents of the downloader [.enc file]...” bugged me so much that I coded up how to do it:
github.com/ddz/whatsapp-m…
|
||
|
|
||
| Paul Makowski proslijedio/la je tweet | ||
|
Caleb Fenton
@caleb_fenton
|
25. sij |
|
I'm working on a new project for Android reversers called Smali Debugger. It's like gdb but for Smali. It uses smalivm (github.com/CalebFenton/si…) for execution.
Here's a quick video of me stepping through two similar methods. #AndroidSecurity #ReverseEngineering pic.twitter.com/72Ic5PB8MK
|
||
|
|
||
| Paul Makowski proslijedio/la je tweet | ||
|
The Captain
@ArrrCaptain
|
23. sij |
|
Guys I’m really excited to announce that Bryan and I are teaching #Ghidra courses open to the public! Tickets are live as I tweet. We’ll be adding more advanced Ghidra and #SRE classes in the near future. Find me at @ShmooCon and chat me up! #unleashthedragon twitter.com/ghidrology/sta…
|
||
|
|
||
| Paul Makowski proslijedio/la je tweet | ||
|
Alex Stamos
@alexstamos
|
22. sij |
|
This FTI forensics report is not very strong. Lots of odd circumstantial evidence, for sure, but no smoking gun.
The funny thing is that it looks like FTI potentially has the murder weapon sitting right there, they just haven't figured out how to test it. twitter.com/VICE/status/12…
|
||
|
|
||
| Paul Makowski proslijedio/la je tweet | ||
|
The Captain
@ArrrCaptain
|
22. sij |
|
RUMINT: Ghidra debugger module is in alpha testing; should work out of the box with gdb 8.0.1; more configuration required for Windows
|
||
|
|
||
| Paul Makowski proslijedio/la je tweet | ||
|
Artur Janc
@arturjanc
|
22. sij |
|
Earlier today we published the details of a set of vulnerabilities in Safari's Intelligent Tracking Prevention privacy mechanism: arxiv.org/abs/2001.07421. They are... interesting. [1/9]
@kkotowicz @empijei @we1x
|
||
|
|
||
| Paul Makowski proslijedio/la je tweet | ||
|
SwiftOnSecurity
@SwiftOnSecurity
|
22. sij |
|
|
||
| Paul Makowski proslijedio/la je tweet | ||
|
Matthew Garrett
@mjg59
|
20. sij |
|
Do you want uncoordinated disclosure? Because if your bug bounty program bans publication, you're setting a price on people's willingness to stay quiet. If they disagree with that price or that principle and you don't have an alternative path, you'll get uncoordinated disclosure. twitter.com/tompohl/status…
|
||
|
|
||
| Paul Makowski proslijedio/la je tweet | ||
|
Pwn All The Things
@pwnallthethings
|
19. sij |
|
Three things in life are constant: death, taxes, and exploitable memory-corruption vulnerabilities in any C/C++ codebase longer than a couple thousand lines long
|
||
|
|
||
| Paul Makowski proslijedio/la je tweet | ||
|
Gen Michael Hayden
@GenMhayden
|
16. sij |
|
Strong device encryption protects all Americans from cyber threats—new vulnerabilities, like the backdoor sought by the FBI, undermines everyone’s security. Weakening encryption won’t stop criminals and terrorists, as I wrote in @bopinion last month. (bloomberg.com/opinion/articl…)
|
||
|
|
||
| Paul Makowski proslijedio/la je tweet | ||
|
Brock Wilbur
@brockwilbur
|
17. sij |
|
Short Thread: staying with some friends and last night after everyone went to bed I could not figure out how to turn off the large ceiling light in their living room. There is a wall controller that seemed fairly straightforward. pic.twitter.com/vMcaqL6Gbr
|
||
|
|
||
| Paul Makowski proslijedio/la je tweet | ||
|
Patch Friday
@PatchFriday
|
17. sij |
|
Vulnerability severity levels pic.twitter.com/7MZUs7fWaS
|
||
|
|
||
| Paul Makowski proslijedio/la je tweet | ||
|
Saleem Rashid
@saleemrash1d
|
17. sij |
|
|
||
|
Paul Makowski
@myhndl
|
16. sij |
|
+1 for Let's Decrypt
|
||
|
|
||