1 Photos and videos
Good morning! Just published a blog post diving into Windows Kernel Pool internals: basics, memory allocation functions, internal structures, and how Segment Heap, LFH, and VS work.
r0keb.github.io/posts/Window…
4
135
401
33,064
Dankitani retweeted
30 Jun 2023
As promised, the research on CVE-2023-28252 is already published with its PoC and the detailed explanation of the reversing that we did with my friend @solidclt.
github.com/fortra/CVE-2023-2…
1
88
186
23,786
Are you interested in learning reverse engineering in 2023?
I've spent the this year studying RE, and I want to share all the resources that helped me along the way in the following tweets. Trust me, you won't be disappointed! 🧵
#infosec
95
605
1,769
232,403
Dankitani retweeted
1 Oct 2022
Do you sit at a computer for longer than 6 hours a day?
You’re destroying your body if so.
Here’s the setup you need to protect yourself from posture problems and crippling long-term injuries:
🧵
1,310
30,649
134,012
Dankitani retweeted
18 Aug 2022
My new paper for @MBThreatIntel: "#JSSLoader - the #shellcode edition" : malwarebytes.com/blog/threat… // #FIN7
15
172
457
Dankitani retweeted
13 May 2022
"A practical guide to bypassing userland API Hooking"
#redteam #infosec #pentest
perspectiverisk.com/a-practi…
30
57
Dankitani retweeted
5 Apr 2022
Shielder - Reversing embedded device bootloader (U-Boot) - Part 2 : shielder.com/blog/2022/03/re…
Part 1 : shielder.com/blog/2022/03/re…
2
15
52
Pwning a Cisco RV340 with a 4 bug chain exploit: blog.relyze.com/2022/04/pwni…
73
184
Dankitani retweeted
18 Mar 2022
Insane amount of good quality resources 👏
github.com/FULLSHADE/Windows…
4
4
[Red Team] "Advanced Process Injection Techniques" Workshop is now LIVE !
Workshop Outline :
PE Basics
APC injection
Module Stomping
Process Hollowing
Process Doppelgänging
Transacted Hollowing
Process Herpaderping
Process Ghosting
Code Repo : github.com/RedTeamOperations…
1
150
369
Windows internals resources that I have collected in around an year #infosec
Win32 programming with code examples: installsetupconfig.com/win32…
Notes for Windows API programming;
caiorss.github.io/C-Cpp-Note…
Windows undocumented functions' docs:
undoc.airesoft.co.uk/
9
186
473
Dankitani retweeted
17 Jan 2022
New blog series: Intro to Embedded RE
Part 1: Tools and Series Overview
voidstarsec.com/blog//2022/0…
The next post releases on Friday, I'm looking forward to sharing this work with the community!
3
60
188
Dankitani retweeted
30 Dec 2021
Investigadores encuentran múltiples puertas traseras en el popular dispositivo VoIP fabricado por el fabricante alemán Auerswald
↘️CVE-2021-40859 -> CVSS 9.8
↘️CVE-2021-40856
↘️CVE-2021-40857
blog.redteam-pentesting.de/2…
🔁Actualizaciones firmware disponibles:
auerswald.de/en/start/news/a…
10
19
Dankitani retweeted
30 Dec 2021
Process injection via the KernelCallBackTable involves replacing original callback function by custom payload so that whenever the function is invoked, payload will be triggered. In this case the fnCOPYDATA callback function has been used.
C# code snippet: gist.github.com/sbasu7241/5d…
3
131
367
Finally, we've released my last investigation on the recent attacks of #andariel #apt group.
It covers the previous work done by @kaspersky @Malwarebytes and @KrCERT .
Where we study the code reuse and evolution of #TigerRAT #TigerDownloader. Enjoy :) #malware
22 Dec 2021
Check out our newest research on the Andariel APT group where we take a deep dive on the TigerDownloader and TigerRAT malware families.
threatray.com/blog/establish…
#malware #apt #andariel #lazarus #threatintelligence
3
19
42
Dankitani retweeted
27 Dec 2021
Finally got around to adding training material from my #defcon 29 workshop "Modern Malware Analysis for Threat Hunters".
👉 github.com/jstrosch/malware-…
3
111
330
Dankitani retweeted
26 Dec 2021
I will also giveaway 1 copy to a random person who retweetd this . 400 followers to go 🌟🌟🌟🌟🌟🌟🌟
#BugBounty
17 Dec 2021
Giveaway time! I will send 3 copies of my hacking workshop done at @THREAT_CON. That's 12 hours of content 🔥
✅ Like
🔁 RT the post
✅ Follow
👉🏿 Giveaway ends at reaching 20k Followers 🌟
15
215
173
Dankitani retweeted
17 Dec 2021
Giveaway time! I will send 3 copies of my hacking workshop done at @THREAT_CON. That's 12 hours of content 🔥
✅ Like
🔁 RT the post
✅ Follow
👉🏿 Giveaway ends at reaching 20k Followers 🌟
131
640
930
Dankitani retweeted
23 Nov 2021
Do you reverse engineer or perform #Android apps security research?
Check the latest #jadx v1.3.0: code renaming (w/o deobfuscation), code comments (plus searching, with regex & in resource files), smali debugger and much more (Core & GUI)…
Level up!👍
github.com/skylot/jadx
2
3
Dankitani retweeted
23 Oct 2021
My writeup for #flareon8 task 7: hshrzd.wordpress.com/2021/10…
5
46
209