malwaretech

@malwaretech@infosec.exchange

If you're wondering what it is I do, don't worry, so am I.

This profile is from a federated server and may be incomplete. Browse more on the original instance.

malwaretech, to random

Silly EDR Bypasses and Where To Find Them

Abusing exception handlers to hook and bypass user mode EDR hooks.
https://malwaretech.com/2023/12/silly-edr-bypasses-and-where-to-find-them.html

malwaretech, (edited ) to random

Christmas gift article :)

An Introduction to Bypassing User Mode EDR Hooks

https://malwaretech.com/2023/12/an-introduction-to-bypassing-user-mode-edr-hooks.html

GossiTheDog, to random
@GossiTheDog@cyberplace.social avatar

Massive story coming from this one later - thank you for Senator Wyden for blowing this up. Apple, follow through with public disclosure so this doesn't get lost.

Part of the US (and other) governments spy worldwide using push notifications. That popup telling you your friend messaged on that super secure encrypted messaging app? Yeahhhhh.

https://www.reuters.com/technology/cybersecurity/governments-spying-apple-google-users-through-push-notifications-us-senator-2023-12-06/

malwaretech, to random

How my quest for a spare garage door remote turned into an extensive hardware hacking project involving a HackRF, Flipper Zero, PIC Programmer, and soldering.

https://www.youtube.com/watch?v=PD4We74ZUAg

malwaretech, to random

Aight, I wasn't going to post the extra-spicy hot wings take. But, fuck it.

Reply-guy climate activists are the most annoying out of touch people on the planet. They'll literally show up in my mentions with shit like "why don't you bicycle down the freeway to the grocery store. You can just clench your re-usable grocery bags between your ass cheeks".
"Need to go to NYC for an important meeting? Take the train....oh, the US doesn't have trains? Why don't you just build you own."

How someone can witness the entire covid pandemic and not only be like "yes, personal responsibility will for sure solve humanity's problems" but also propose nothing but the most braindead solutions imaginable is literally beyond me.

I get the frustration with the currency system, but annoying the shit out of random Mastodon users with the most garbage advice you can muster is just not it. Some of us are actually trying to make real systemic change.

malwaretech,

@lmk Investment wise, my focus is alternative energy storage. If we can move beyond lithium batteries, we may be able to see a reality in which long range vehicles become electric (the big gamechanger would be jetliners). There is also a potential that we fix the inability to store energy from powerplants, allowing there to be a bigger disconnect between where energy is produced and where it's utilized (imagine, as an overly naïve example, we could charge long lasting batteries at a renewable plant, then ship them to rural customers). I also invest in some of these quirky electric transport startups (even though they're a black hole for money) because things like e-bikes solve a very real problem for working/middle class Americans and e-VTOLs could potentially replace point-to-point helicopter charters.

malwaretech,

My philosophy on climate change is simple. Most people don’t buy Teslas because they’re green, they buy them because they’re cool. Most people don’t work from home because it takes cars off the road, they do it because it’s convenient and offices suck. Give people solutions that are also environment friendly, not problems. If your only selling point is “but, the climate”, you’ve already lost. Even more so if you find yourself trying to bully people into objectively impractical alternatives.

malwaretech, to random

I've never actually understood the appeal of tech campuses. Find a remote job, move to a luxury apartment complex, then you'll have all the same perks without the commute, and you can socialize with people other than your work colleges.

happyborg,
@happyborg@fosstodon.org avatar

@malwaretech you forgot "crap internet" :wink

malwaretech, to random

The Paradox Of Intolerance
(And The Case For Leaving Twitter)

https://throwawayopinions.io/the-paradox-of-intolerance.html

malwaretech, to random

My thoughts on how Generative AI threatens to bring about the end of the free and open internet.

https://marcushutchins.com/blog/tech/opinions/the-end-of-the-free-internet.html

Azeria, to random

Time for an Arm-twist! CVE-2023-4039

Tom Hebb (Meta red team) and I discovered an 0day in GCC (for AArch64 targets) during my Arm exploitation training.

It renders stack canaries against overflows of dynamically-sized variables useless.

https://developer.arm.com/Arm%20Security%20Center/GCC%20Stack%20Protector%20Vulnerability%20AArch64

GossiTheDog, to random
@GossiTheDog@cyberplace.social avatar

oh god I went on Twitter and now I need to quit Twitter again

video/mp4

GossiTheDog, (edited )
@GossiTheDog@cyberplace.social avatar

@ValidHorizon @malwaretech @secureisd speaking of whatabouting, nobody mentioned theft of COVID funds, crushing democracy or support of genocide. I will mention "legally-constrained spying" is doing some heavy lifting, given Five Eyes things have in the past ruled to be not lawful.

malwaretech, (edited ) to Cybersecurity

For anyone interested, I recently started a new cybersecurity podcast which has a production team behind it. Currently we're experimenting with format and always appreciate feedback and guest suggestions.

https://www.cybrary.it/podcast-series/intruder-alert

afb, to Podcast

I binged all the current episodes of @malwaretech 's Intruder Alert the other day. Really enjoyable discussions on and adjacent topics. Not too hard to understand for a novice like myself, but not dumbed down either. I'd strongly recommend it.

Andy_Thompson, to random

I'm shipping up to Boston to have some fun chatting up @malwaretech as part of his "fireside chat" keynote.

Any questions you think I should ask him?

malwaretech, to random

I published the source code for my Twitter Blue blocking extension to GitHub. Looking for some developers to test and provide feedback before I provide prepackaged version.

https://github.com/MalwareTech/BlueLiteBlocker

malwaretech, (edited )

Updated BlueLiteBlocker Extension to v0.0.0.5
Filters tweets from Twitter Blue users you don't follow based on follower count (doesn't require blocking/muting).

Changelog:

  • added filtering of replies to removed tweets if hard filtering is enabled
  • fixed bug with loading default settings
  • added css to settings page to make it look nicer
  • added exception logging and silent fail to avoid interrupting client on error
  • added v0.0.0.5 to Chrome extension store

Chrome WebStore: https://chrome.google.com/webstore/detail/blueliteblocker/gimbefnamedicgajjballjjhanhnpjce
Firefox WebStore: https://addons.mozilla.org/en-US/firefox/addon/blueliteblocker/
Source Code: https://github.com/MalwareTech/BlueLiteBlocker
Demo video: https://www.youtube.com/watch?v=nyQomTilJXo

  • All
  • Subscribed
  • Moderated
  • Favorites
  • JUstTest
  • ngwrru68w68
  • thenastyranch
  • osvaldo12
  • cubers
  • InstantRegret
  • DreamBathrooms
  • cisconetworking
  • magazineikmin
  • Youngstown
  • Durango
  • mdbf
  • slotface
  • rosin
  • provamag3
  • kavyap
  • tacticalgear
  • modclub
  • khanakhh
  • anitta
  • ethstaker
  • tester
  • everett
  • GTA5RPClips
  • normalnudes
  • megavids
  • Leos
  • lostlight
  • All magazines
    •