Collaborate Disseminate
Rationale: I need to figure out ways to protect Intellectual Property contained in NVIDIA CUDA/GPU code.
That said, I’m surprised that there are literally zero GPU code obfuscators.
On stack overflow, I found a single quest… Continue reading Why are there no GPU Obfuscators?
The phishing campaign is using a new technique to hide the source code of its landing page – and stealing credentials from customers of a major U.S.-based bank. Continue reading Phishing Tactic Hides Tracks with Custom Fonts
IBM X-Force’s top security predictions for 2019 cover a range of potential attack schemes and consequences, from industry-specific prognostications to a rapid expansion of emerging criminal schemes.
The post IBM X-Force Security Predictions for the 2019 Cybercrime Threat Landscape appeared first on Security Intelligence.
Continue reading IBM X-Force Security Predictions for the 2019 Cybercrime Threat Landscape
I got a GUI Program, which loads the Logic from a webserver if the entered License Key is valid.
The actual connection string I hexed and xor’d with a secret key. (which is unfortunately static)
The Webservice itself authent… Continue reading Key Encryption / Obfuscation
This blog post presents a machine learning (ML) approach to solving
an emerging security problem: detecting obfuscated Windows command
line invocations on endpoints. We start out with an introduction to
this relatively new threat capability, and … Continue reading Obfuscated Command Line Detection Using Machine Learning
I published the following diary on isc.sans.edu: “More obfuscated shell scripts: Fake MacOS Flash update”: Yesterday, I wrote a diary about a nice obfuscated shell script. Today, I found another example of a malicious shell script embedded in an Apple .dmg file (an Apple Disk Image). The file was delivered through
[The post [SANS ISC] More obfuscated shell scripts: Fake MacOS Flash update has been first published on /dev/random]
Continue reading [SANS ISC] More obfuscated shell scripts: Fake MacOS Flash update
I published the following diary on isc.sans.edu: “Obfuscated bash script targeting QNap boxes“: One of our readers, Nathaniel Vos, shared an interesting shell script with us and thanks to him! He found it on an embedded Linux device, more precisely, a QNap NAS running QTS 4.3. After some quick investigations,
[The post [SANS ISC] Obfuscated bash script targeting QNap boxes has been first published on /dev/random]
Continue reading [SANS ISC] Obfuscated bash script targeting QNap boxes
It’s that time of year again! The most glorious of shopping seasons has arrived, and users have commenced their annual tradition of flooding e-stores in search of the best deals that their money can buy. Threat actors, keen to take advantage… Continue reading Black Friday & Cyber Monday Deals: Phishing and Site Skimmers
I published the following diary on isc.sans.edu: “Basic Obfuscation With Permissive Languages”: For attackers, obfuscation is key to keep their malicious code below the radar. Code is obfuscated for two main reasons: defeat automatic detection by AV solutions or tools like YARA (which still rely mainly on signatures) and make the code
[The post [SANS ISC] Basic Obfuscation With Permissive Languages has been first published on /dev/random]
Continue reading [SANS ISC] Basic Obfuscation With Permissive Languages
I published the following diary on isc.sans.edu: “Malicious Powershell Script Dissection”: Here is another example of malicious Powershell script found while hunting. Such scripts remain a common attack vector and many of them can be easily detected just by looking for some specific strings. Here is an example of YARA
[The post [SANS ISC] Malicious Powershell Script Dissection has been first published on /dev/random]
Continue reading [SANS ISC] Malicious Powershell Script Dissection