Collaborate Disseminate
I worry I might have viruses, malware, keyloggers, backdoor…etc. on my phone and need something powerful to scan my phone and remove them.
Perhaps something popular and commonly agreed upon in the power user community…like how xposed i… Continue reading What’s the best way to remove malware from a rooted Android 7.0? [closed]
I am writing an installer process (.exe). My installer deploys different components. It will add registry entries, copy files, copy files over the network, remote execute, remote PowerShell, local Powershell, etc.
Sometimes, antivirus DLLs… Continue reading How can I have my process detect if antivirus injected a module or DLL to it?
A security researcher told me that in certain production systems that should have high fault-tolerance several independent subsystems are used to perform the same task. If at least 2/3 subsystems agree on a decision, the decision is taken…. Continue reading Multiple independent systems solving the same problem
In this article, I’m going to describe how to use Microsoft 365 Defender Threat Analytics to improve security in your organization. Over three Petri articles, we’ve dived into what Microsoft Defender for Endpoint (MDE) is, how you can migrate to it, and how it should be configured. Part 1: Understanding Microsoft Defender for Endpoint and […] Continue reading Using Microsoft 365 Defender Threat Analytics to Improve Security
Microsoft recently announced that Microsoft Defender for Endpoint will soon be available in two plans: P1 and P2. In this article, I will look at how the two plans compare. With Windows, MacOS, iOS, and Android devices being the most common target for cyber criminals, malware and threats are continuously improving and evolving. In the […] Continue reading Microsoft Defender for Endpoint Pricing Plans
I was streaming a series on a random webpage (123moviesgo.cz) and, without my permission, two files called "hd.exe" and "next.exe" got downloaded. I never opened them and inmediatly put them in the trash and deleted the… Continue reading Is a Malwarebytes scan enough to avoid a potential virus of accidentally downloaded files? [closed]
For several years, I have been setting up VMs with 2-3 year old versions of Windows as well as some additional applications to demonstrate two-stage exploits using Metasploit for educational purposes (more precisely Bachelor-level IT secur… Continue reading How to find discrepancy between exploitable and unexploitable VM
Some are standard user space dll’s and another one is actually a windows driver. The libraries alone are not dangerous and are pure utilities but they can be used by bad guys, like most software tools.
I was advised to sign the driver with… Continue reading How to stop 3rd party libraries from being reported as malicious, if they were part of malicious programs in the past?
I just bought a new computer : msi with 32GB RAM and I would like to know what firewall or/and antivirus to use.
I thought about Norton which seems to be easy to use and have a vpn included which is a plus for me. what do you think about t… Continue reading what firewall/antivirus to use on a 32GB RAM computer under windows [closed]
W^X is a critical security feature, allowing us a chance to perform security analysis on data that some entity on a computer wants to execute.
Windows implements this by requiring a process to call VirtualProtect. Because UEFI rootkits are… Continue reading Is W^X enforced against UEFI DXE drivers (firmware)? Could it be if we tried?