Collaborate Disseminate
Posted this over in the Unix section earlier and was recommended here:
I’m stopping by trying to further narrow down my understanding and ultimately the eradication of one if not multiple Cobalt Strike beacons on multiple machines.
Before … Continue reading Need help identifying and erradicating Cobalt Strike beacon and persistence [closed]
Security researchers at Intezer and BlackBerry have documented Symbiote, a wholly unique, multi-purpose piece of Linux malware that is nearly impossible to detect. “What makes Symbiote different from other Linux malware that we usually come acros… Continue reading Researchers unearth highly evasive “parasitic” Linux malware
Basically what I’m asking is if you root a Samsung without a computer method, will the update appear in settings like it normally does when the phone is not rooted?
If it does, can the download be accepted and the update installed normally… Continue reading If I root a Samsung without a computer(using no computer root method) will I receive Software Update normally? [closed]
I understand the difference between a Ring-0 rootkit and a Ring-3 rootkit, in terms of their hierarchical depth in computational models. That is kernel mode and usermode, respectively.
I am confused as to whether there is a difference betw… Continue reading Is there a difference between a bootkit and a ring-0 rootkit?
If a systemless root is done will software updates still appear in settings/show up as a notification that there is a new update available?
In case it does show up, can you download and install the update directly from the settings app eve… Continue reading Can a Samsung receive OTA updates normally with a systemless root? [migrated]
I recently bought a used SanDisk SSD and I am curious to know if there is any way to assess the integrity of its firmware using information such as SMART or drive details.
In addition to SMART information, SanDisk Dashboard application als… Continue reading Is it possible to assess the integrity of an SSD’s firmware using SMART results or drive details?
Windows machines have things like TPM and Secure boot to help protect against firmware rootkits, but is Mac any safer in these regards? How does Mac work in the boot stage and is it any less suceptable to firmware rootkits? Are there any… Continue reading Is Mac OS safer to use as far as firmware rootkits, cold boot attacks and evil maid?
Lets say a computers UEFI is infected with a rootkit and you have a copy of Tails written to a USB drive. I am guessing it could possibly infect the Tails OS as well. Well if you were to write tails to a CD that is not re-writable and bo… Continue reading Running Tails from a non-writable CD vs a USB on a PC with a UEFI infection. Would it comprimise Tails OS when loaded?
So I bought a new Lenovo Legion 5 PC. It comes with windows preinstalled. I was wondering is there a way to copy the firmware that comes with the PC onto a USB drive without having to download it off the website? For instance if I wante… Continue reading Is there a way to copy the firmware that came with my PC?
What firmware components of a PC are writable? For instance which components have the ability to store rootkits or viruses?
Continue reading What firmware components of a PC are writeable?