I've tried something new! I have streamed some unfiltered coding, writing a module to detect malicious bytes in a shellcode injection scenario for an EDR that would use the System Call Integrity Layer project: youtube.com/watch?v=gK4OXh6l… If this content is useful, or you like it, please let me know and give me some ideas what you would want to see! I want to grow in myself and help produce content that would be beneficial for our amazing cyber community! #blueteam #cybersecurity #redteam #driver #rust #rustlang #infosec #rustdriver #soc #cyber #cti #informationsecurity #infosec

Almost at the end of the immediate R&D phase of the SCIL mini-project :~). We queue a tonne of IO events (irp's) in the driver and use these to immediately signal to the EDR in user-mode that there has been a system call, without needing to hook NTDLL, so the EDR can (in userland) inspect what a process is doing at runtime. That was the motivation of the project. The next immediate step is to suspend execution and wait for a decision by the user-mode EDR component. Once this is finished, I can polish it up, deploy it system wide and start getting some metrics as to whether it degrades system performance, or whether it is within acceptable margins for environments an EDR would operate in. All of course, metrics judged by me, someone who does not work for an EDR company ^^. After this is complete, I can write up my findings, maybe a few blog posts on the implementation detail around some of the driver components in Rust (as there were no existing examples of such). THEN I can get back to hitting my Wyrm V1.0 official release which is not far off! Quite a few things to hit for Wyrm to get it to 1.0, but the end is in sight, then I can begin progressing the milestones towards 1.1, 2.0 and beyond! All in all, so far, this has been a fun little project! ^_^ #blueteam #redteam #cyber #infosec #cybersecurity #windowsdriver #rustdriver #edr #rust #rustlang

Ok - pulling out all the args now (only showcasing for NtAllocateVirtualMemory). Here is the syscall hooks that I'm monitoring in the alt syscalls, bits in red is the process injection syscalls being caught. 1 last issue to fix, then I'll publish (hopefully later today) #blueteam #redteam #computerscience #computing #kernel #hacking #malware #maldev #rust #rustlang #rustdriver #cyber #cybersecurity #infosec #informationsecurity #ciso #cyber #winapi #bsides #DEFCON #BlackHat #SANS #CTF #reverseengineering #memoryforensics

Alt syscalls on W11 are not causing instability now I **think** I have isolated the issue. Still one last stability issue to close. No PatchGuard interference. HyperGuard.. I need to check (bricked my SecureBoot vm) - this is enough of a win for me to start writing it up :) #blueteam #redteam #malware #security #cybersec #infosec #cybersecurity #maldev #rootkit #kernel #programming #rust #rustlang #rustdriver #edr #antivirus #altsyscall #syscall #cyber #hacking #pentesting

【GT入荷情報】 本日はUSEDエフェクターのご案内！ HAO Rust Driver 入荷です！ 3モードに1ノブ仕様のシンプルなペダル！ guitar-top.com お問合せ等は info@guitar-top.com まで！ #HAO #RustDriver #EFECTORS

HAO RustDRIVER の赤い方を使ってます。ほぼほぼ常にONです。

Hao RustDriverプレゼント企画、 当選者は@tKmGuitars1 さんに決まりました‼️ おめでとうございます〜\(//∇//)\✨ 沢山のご応募ありがとうございました❣️

フォロワー様が3000人を突破したのでプレゼント企画をやってみますー！ Hao RustDriver(ゲインつまみ増設Mod)をプレゼントします！ 応募方法はこの@guitaristokuno をフォロー&このツイートをRTしてくれた方の中から抽選で1名様にプレゼントｫｵｵ！( ◠‿◠ ) 締切は5月25日の21時です！

RustDriverのゲインポット追加、実は配線ミスってたことに気がつきまして、直してゲインつまみがしっかり効く様になりました...笑 これでローゲインもハイゲインもイケちゃうぞぉぉぉ！ ねちっこいミドルがナイスな歪みです\(//∇//)\✨

New mini travel pedalboard for our guitarist combat ready. FuzzBoy> Flashback> Phaser> RustDriver> Mojo> Boost> Tuner. Powered with Truetone 1 Spot Pro CS6. EBS flat cables wiring. Assembled with the magic touch of our guru and sound engineer @GuitarMoog #gearporn

Rustdriver改にやっとスイッチつけてけど、切り替えん時のノイズ全く出なかったので大勝利！

Rustdriver改成功したぞ！バイパスの抵抗の噛ませ方と容量、同時に変えたからどっちが原因かわからねぇけど！

昨日の回路図(笑)をレイアウト考えずに素のRustdriver風に乗っけたらどうかというのを実践した図...笑ってくれて、ええんやで...

メイド本のオーバードライブ&ディストーションをベースにRustdriver作るとどうなるのか...

HAO RustDriver ゲイン固定で歪みの質感を変えるだけの極シンプルなオーバードライブ！ 粗めの歪みは存在感出しまくりです！ M

今日のエフェクター。 ToneもGainもついていなくて音作りに迷わなくていいので楽チンです！ メインの歪みによさそうです！！ #HAO #RUSTDRIVER #efector… instagram.com/p/BfdD_3bnONM/

HaoのRustdriver一時期所有してたけどMXRのmicroampにしてから手放してしまって、ロシアンマフと合体したらどうなったのか…1度でも良いからやっておけば良かったとコーカイコーカイ

このハリのある高音が気持ちい〜 そしてワンノブ、電池駆動のみという漢の仕様！笑 使いこなしたくなりますな(´∀｀) #hao #RustDriver #エフェクター試奏

RUSTDRIVERは大分ピーキーというか、未だに何のアンプに使えば効果を十分に発揮できるのかわからない

SLdriveが手に入らなさ過ぎてRustDriverとD&Sを手に入れようか考え中