Collaborate Disseminate
When trying to analyze malware, have there been cases where malware detected the use of mitmproxy and ceased operation?
If that has happened, would it be a good idea to be constantly using a proxy as a measure for deterring any malware?
I’ve read about APKPure being infested with AdWare and similar PUPs, what would be the great source/method to download APKs for your Android phone?
Some options I’m aware of, but I need opinion on:
Package manager from F-Droid which can e… Continue reading What’s the most secure way to get APK files?
I’m guessing uploading to IPFS also uploads some metadata, which gets shared as well, does this assumption hold any truth? According to this only content identifiers and node identifiers are in the public.
Does uploading a file leak any o… Continue reading What metadata could be stored in the IPFS network and what could be collected by modified nodes?
Me and my friend have been discussing about the ongoing Russia-Ukraine war and he started showing me how all the satellites are aligned and targeted to Ukraine by US intelligence and other government bodies (supposedly, according to that p… Continue reading Are the positions of military/spy/government satellites publicly shown on any websites? [closed]
CPUID is an instruction that identifies CPU type and features.
Has there ever been a case of either targeting or the opposite – ignoring of specific CPUIDs by malware in the wild?
Was there ever been out-in-the-wild or any kind of detected firmware rootkit in an M.2 SSD?
Continue reading Has there ever seen a recorded case of a M.2 infected SSD firmware?
Do for example programs running using xinetd have open ports and banners when running thru an allow rule in the firewall? (no filtering thru the firewall)
First of all, this is not a duplicate of Is it possible to block all the VPNs by inspecting upper layer protocol field? since the question is different.
My goal is to block all public VPN users like from ExpressVPN, Private Internet Access… Continue reading Is it possible to block all public VPN users IPs? [closed]
Let’s assume that for my question we’re using the equivalent of apt purge, which also removes configuration files. What’s left behind after apt purge and similar commands from other package managers?
I’m guessing it would be loose dependen… Continue reading From a forensics standpoint how much leftovers do package managers in Linux leave behind?
I am thinking of developing of a rather primitive CLI program for the sole purpose of detecting rootkits/bootkits/firmware modifying advanced malware.
Can you iterate thru all all hardware IDs (CPUID, GPUID etc) like dmidecode does just f… Continue reading Is it possible to enumerate thru all the hardware IDs?