Collaborate Disseminate
I am a learner of FOSS licensing, security and privacy. I ask this question because one of the arguments persuading users to use or switch to FOSS is the fact that since the code is open, an expert can review the code for sec… Continue reading Is code obfuscation common in FOSS?
I published the following diary on isc.sans.edu: “Interesting JavaScript Obfuscation Example“: Last Friday, one of our reader (thanks Mickael!) reported to us a phishing campaign based on a simple HTML page. He asked us how to properly extract the malicious code within the page. I did an analysis of the
[The post [SANS ISC] Interesting JavaScript Obfuscation Example has been first published on /dev/random]
Continue reading [SANS ISC] Interesting JavaScript Obfuscation Example
I’m creating a new website, so I am thinking about how to protect my email address and phone number against crawlers, I actually mean email harvesters (most of which I suppose don’t have JavaScript enabled, but I don’t have a… Continue reading Is security by obscurity / obfuscation a valid option, or do the crawlers have JavaScript enabled?
Found this on a WordPress server under the filename wp-includes/class-wp-image-editor-fd.php when WordFence picked it up as being an unexpected file.
Link to source is here: https://pastebin.com/DWe4d33K
Very clearly looks … Continue reading What does the attached php malware do?
So the past few weeks we have been trying to cut back on the amount of spam reaching our users in our organization. We have been successful in implementing hard filtering rules like if an email subject or body contains “my bitcoin address”… Continue reading Filtering Obfuscated Spam Emails In Exchange
Trying to build protector for .net 64-bit executables.
I can’t decide how should I load the native .dll that will do the hooking.
Some options that I can think of:
modify the .net binary
start process suspended then inje… Continue reading .net 64-bit protector [on hold]
The malware is behind billions in banking and credit-card losses. Continue reading Carbanak Source Code Unveils a Startlingly Complex Malware
In the past couple of years, we’ve been tracking a long-lasting campaign responsible for injecting malicious scripts into WordPress sites.
This campaign leverages old vulnerabilities (patched a long time ago) found in a variety of outdated theme… Continue reading From .tk Redirects to PushKa Browser Notification Scam
I am doing a research project on metamorphic malware and would like to have access to a metamorphic engine I could demo. Are there any good open-source (or easily obtainable) metamorphic engines I could experiment with for th… Continue reading What notable examples of metamorphic engines are there?
I was trying to obfuscate android by adding junk code in Smali. Understood that by adding nop/goto instruction to it works well. However when I tried to add (const/4 v0, 0x4) my app crash after recompile.
# direct methods
…. Continue reading Junk code insertion in Smali