Some part of FIN7 (aka CARBANK) source code has leaked to VirusTotal:

https://www.fireeye.com/blog/threat-research/2019/04/carbanak-week-part-one-a-rare-occurrence.html

#malware #source #leak #fin7 #darw1n

Deobfuscating APT32 Flow Graphs with Cutter and Radare2 https://research.checkpoint.com/deobfuscating-apt32-flow-graphs-with-cutter-and-radare2/ #radare2 #malware #dukeBarman

Create and use macros in IDA's CLIs https://github.com/0xeb/ida-climacros #ida #dukeBarman

How to reverse malware on macOS:

Part 1: https://www.sentinelone.com/blog/how-to-reverse-macos-malware-part-one/
Part 2: https://www.sentinelone.com/blog/how-to-reverse-macos-malware-part-two/
Part 3: https://www.sentinelone.com/blog/how-to-reverse-malware-on-macos-without-getting-infected-part-3/

#malware #macos #newbie #reverse #dukeBarman

Reverse Engineering an Insulin Pump https://blog.usejournal.com/insulin-pumps-decapped-chips-and-software-defined-radios-1be50f121d05 #reverse #hardware #dukeBarman

Android App Reverse Engineering 101 https://maddiestone.github.io/AndroidAppRE/ #android #reverse #newbie #dukeBarman

Для тех студентов, что хотят интересно и познавательно провести лето 2019, развиваться в области ИБ, компания Digital Security снова открывает набор на "Summ3r 0f h4ck" в Санкт-Петербурге https://habr.com/ru/company/dsec/blog/450036/ #traineeship #dukeBarman

A Python implementation of IDA FindCrypt/FindCrypt2 plugin https://github.com/you0708/ida/tree/master/idapython_tools/findcrypt #ida #reverse #dukeBarman

Hello everyone! Finally, our forum has moved to a new engine. The forum has two main languages for communication. This is English and Russian. But English has priority now.

https://www.reverse4you.org

https://d4stiny.github.io/Remote-Code-Execution-on-most-Dell-computers/ #exploit #jeisonwi

Slides from #ghidra workshop INFILTRATE 2019 https://github.com/0xAlexei/INFILTRATE2019/blob/master/INFILTRATE%20Ghidra%20Slides.pdf #reverse #dukeBarman

How To Do Firmware Analysis. Tools, Tips, and Tricks https://www.pentestpartners.com/security-blog/how-to-do-firmware-analysis-tools-tips-and-tricks/ #hardware #reverse #dukeBarman

SAFE (Self Attentive Function Embedding) - compute binary function embeddings to find out if two functions are similar or not. Based on radare2. github: https://github.com/gadiluna/SAFE Article: https://medium.com/@massarelli/safe-self-attentive-function-embedding-d80abbfea794 #reverse #radare2 #dukeBarman

Working With Ghidra P-Code To Identify Vulnerable Function Calls https://www.riverloopsecurity.com/blog/2019/05/pcode/ #ghidra #dukeBarman

A set of Linux binary exploitation tasks for beginners https://github.com/xairy/easy-linux-pwn #exploit #dukeBarman

https://github.com/radare/radare2/releases/tag/3.5.0 #radare2 #jeisonwi

Overcoming fear: reversing with radare2 https://conference.hitb.org/hitbsecconf2019ams/materials/D1T3%20-%20Reversing%20with%20Radare2%20-%20Arnau%20Gamez%20Montolio.pdf #radare2 #reverse #dukeBarman

ANBU - Automatic New Binary Unpacker with PIN DBI Framework https://github.com/Fare9/ANBU #reverse #pin #dukeBarman

GDB 8.3 Debugger Brings RISC-V, Terminal Styling, C++ Injection, IPv6 Connections https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;a=blob_plain;f=gdb/NEWS;hb=gdb-8.3-release #debugger #dukeBarman

All the slides for #HITB2019Ams https://conference.hitb.org/hitbsecconf2019ams/materials/ #conference #HITB #dukeBarman

New class of speculative execution vulnerability: MDS (Microarchitectural Data Sampling) is a hardware vulnerability which allows unprivileged speculative access to data which is available in various CPU internal buffers.

RIDL and Fallout: MDS attacks

"Intro": https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/mds.html
Official site: https://mdsattacks.com/
Patch: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=fa4bff165070dc40a3de35b78e4f8da8e8d85ec5

#hardware #exploit #dukeBarman