SFBA.social

21 posts7 participants16 posts today

LobstersAttacking My Landlord's Boiler <a href="https://lobste.rs/s/18ycoz" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://lobste.rs/s/18ycoz</a> <a href="https://mastodon.social/tags/hardware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hardware</a> <a href="https://mastodon.social/tags/reversing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#reversing</a> <a href="https://blog.videah.net/attacking-my-landlords-boiler/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://blog.videah.net/attacking-my-landlords-boiler/</a>

LobstersReverse engineering the obfuscated TikTok VM <a href="https://lobste.rs/s/66gzvi" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://lobste.rs/s/66gzvi</a> <a href="https://mastodon.social/tags/reversing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#reversing</a> <a href="https://github.com/LukasOgunfeitimi/TikTok-ReverseEngineering" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://github.com/LukasOgunfeitimi/TikTok-ReverseEngineering</a>

Alexandre BorgesDEFCON 33 CTF Write-Up Series #1: jxl4fun2 (pwn):<a href="https://blog.cykor.kr/2025/04/DEFCON-33-Series-jxl4fun-pwn" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://blog.cykor.kr/2025/04/DEFCON-33-Series-jxl4fun-pwn</a>DEFCON 33 CTF Write-Up Series #2: tinii (rev):<a href="https://blog.cykor.kr/2025/04/DEFCON-33-Series-tinii" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://blog.cykor.kr/2025/04/DEFCON-33-Series-tinii</a><a href="https://infosec.exchange/tags/ctf" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ctf</a> <a href="https://infosec.exchange/tags/defcon" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#defcon</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hacking</a> <a href="https://infosec.exchange/tags/reversing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#reversing</a>

LobstersBootstrapping Understanding: An Introduction to Reverse Engineering <a href="https://lobste.rs/s/qveq0g" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://lobste.rs/s/qveq0g</a> <a href="https://mastodon.social/tags/games" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#games</a> <a href="https://mastodon.social/tags/programming" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#programming</a> <a href="https://mastodon.social/tags/reversing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#reversing</a> <a href="https://www.muppetlabs.com/~breadbox/txt/bure.html" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.muppetlabs.com/~breadbox/txt/bure.html</a>

Python Weekly 🐍"Verified" "Compilation" of "Python" with Knuckledragger, GCC, and Ghidra<a href="https://www.philipzucker.com/knuckle_C_pcode/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.philipzucker.com/knuckle_C_pcode/</a>Discussions: <a href="https://discu.eu/q/https://www.philipzucker.com/knuckle_C_pcode/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://discu.eu/q/https://www.philipzucker.com/knuckle_C_pcode/</a><a href="https://mastodon.social/tags/assembly" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#assembly</a> <a href="https://mastodon.social/tags/compilers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#compilers</a> <a href="https://mastodon.social/tags/compsci" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#compsci</a> <a href="https://mastodon.social/tags/formalmethods" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#formalmethods</a> <a href="https://mastodon.social/tags/programming" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#programming</a> <a href="https://mastodon.social/tags/python" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#python</a> <a href="https://mastodon.social/tags/reversing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#reversing</a>

Lobsters"Verified" "Compilation" of "Python" with Knuckledragger, GCC, and Ghidra by <a href="https://types.pl/@sandmouth" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@sandmouth</a> <a href="https://lobste.rs/s/b9kbg3" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://lobste.rs/s/b9kbg3</a> <a href="https://mastodon.social/tags/assembly" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#assembly</a> <a href="https://mastodon.social/tags/compilers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#compilers</a> <a href="https://mastodon.social/tags/formalmethods" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#formalmethods</a> <a href="https://mastodon.social/tags/python" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#python</a> <a href="https://mastodon.social/tags/reversing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#reversing</a> <a href="https://www.philipzucker.com/knuckle_C_pcode/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.philipzucker.com/knuckle_C_pcode/</a>

LobstersEmulating an iPhone in QEMU <a href="https://lobste.rs/s/sqqegd" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://lobste.rs/s/sqqegd</a> <a href="https://mastodon.social/tags/ios" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ios</a> <a href="https://mastodon.social/tags/reversing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#reversing</a> <a href="https://eshard.com/posts/emulating-ios-14-with-qemu" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://eshard.com/posts/emulating-ios-14-with-qemu</a>

Volexity :verified:In the course of its investigations, <a href="https://infosec.exchange/@volexity" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@volexity</a> frequently encounters malware samples written in Golang. This reflects the increase in popularity of the Golang generally, and presents challenges to reverse engineering tools.   Today, <a href="https://infosec.exchange/@volexity" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@volexity</a> is releasing GoResolver, open-source tooling to help reverse engineers understand obfuscated samples. <a href="https://infosec.exchange/@r00tbsd" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@r00tbsd</a> & Killian Raimbaud presented details at INCYBER Forum earlier today.   GoResolver uses control-flow graph similarity to identify library code in obfuscated code, leaving analysts with only malware functions to analyze. This saves time & speeds up investigations!   Check out the blog post on how GoResolver works and where to download it: <a href="https://www.volexity.com/blog/2025/04/01/goresolver-using-control-flow-graph-similarity-to-deobfuscate-golang-binaries-automatically/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.volexity.com/blog/2025/04/01/goresolver-using-control-flow-graph-similarity-to-deobfuscate-golang-binaries-automatically/</a>   <a href="https://infosec.exchange/tags/dfir" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#dfir</a> <a href="https://infosec.exchange/tags/reversing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#reversing</a> <a href="https://infosec.exchange/tags/malwareanalysis" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#malwareanalysis</a>

LobstersNotes on the Pentium's microcode circuitry <a href="https://lobste.rs/s/jzxmrc" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://lobste.rs/s/jzxmrc</a> <a href="https://mastodon.social/tags/hardware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hardware</a> <a href="https://mastodon.social/tags/historical" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#historical</a> <a href="https://mastodon.social/tags/reversing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#reversing</a> <a href="http://www.righto.com/2025/03/pentium-microcde-rom-circuitry.html" rel="nofollow noopener noreferrer" translate="no" target="_blank">http://www.righto.com/2025/03/pentium-microcde-rom-circuitry.html</a>

LobstersThe Colonel’s Bequest – Case Cracked <a href="https://lobste.rs/s/zpnypl" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://lobste.rs/s/zpnypl</a> <a href="https://mastodon.social/tags/reversing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#reversing</a> <a href="https://www.benshoof.org/blog/case-cracked" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.benshoof.org/blog/case-cracked</a>

Christoffer S.(cyfirma.com) Konni RAT Analysis: Multi-Stage Attack Process and Evasion Techniques <a href="https://www.cyfirma.com/research/analysis-of-konni-rat-stealth-persistence-and-anti-analysis-techniques/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.cyfirma.com/research/analysis-of-konni-rat-stealth-persistence-and-anti-analysis-techniques/</a>Executive Summary: This report provides a comprehensive analysis of Konni RAT, a sophisticated remote access Trojan linked to North Korean cyber espionage group APT37. The malware employs a multi-stage attack process involving batch files, PowerShell scripts, and VBScript to exfiltrate sensitive data and maintain persistence. The attack begins with a zip archive containing a malicious LNK file disguised as a document. The malware exploits Windows Explorer limitations to hide malicious commands and uses obfuscation techniques to evade detection. Key capabilities include data exfiltration from user directories, system information gathering, persistence through registry modifications, and communication with command-and-control servers. The report includes detailed technical analysis of the attack stages, from initial infection to data exfiltration, along with indicators of compromise and YARA detection rules.<a href="https://swecyb.com/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cybersecurity</a> <a href="https://swecyb.com/tags/NorthKorea" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#NorthKorea</a> <a href="https://swecyb.com/tags/APT37" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#APT37</a> <a href="https://swecyb.com/tags/MalwareAnalysis" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#MalwareAnalysis</a> <a href="https://swecyb.com/tags/ThreatIntel" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ThreatIntel</a> <a href="https://swecyb.com/tags/Malware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Malware</a> <a href="https://swecyb.com/tags/Reversing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Reversing</a>

Lenin alevski 🕵️💻New Open-Source Tool Spotlight 🚨🚨🚨FLARE's FLOSS is a tool that extracts strings from malware, even if they're obfuscated. Unlike standard tools, FLOSS uses emulation and decoding techniques to identify hidden strings, making it invaluable for reverse engineers. It bridges gaps where simple static analysis falls short. <a href="https://infosec.exchange/tags/malwareanalysis" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#malwareanalysis</a> <a href="https://infosec.exchange/tags/reversing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#reversing</a>🔗 Project link on <a href="https://infosec.exchange/tags/GitHub" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#GitHub</a> 👉 <a href="https://github.com/fireeye/flare-floss" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://github.com/fireeye/flare-floss</a><a href="https://infosec.exchange/tags/Infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Infosec</a> <a href="https://infosec.exchange/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cybersecurity</a> <a href="https://infosec.exchange/tags/Software" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Software</a> <a href="https://infosec.exchange/tags/Technology" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Technology</a> <a href="https://infosec.exchange/tags/News" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#News</a> <a href="https://infosec.exchange/tags/CTF" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CTF</a> <a href="https://infosec.exchange/tags/Cybersecuritycareer" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cybersecuritycareer</a> <a href="https://infosec.exchange/tags/hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hacking</a> <a href="https://infosec.exchange/tags/redteam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#redteam</a> <a href="https://infosec.exchange/tags/blueteam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#blueteam</a> <a href="https://infosec.exchange/tags/purpleteam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#purpleteam</a> <a href="https://infosec.exchange/tags/tips" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#tips</a> <a href="https://infosec.exchange/tags/opensource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#opensource</a> <a href="https://infosec.exchange/tags/cloudsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cloudsecurity</a>— ✨ 🔐 P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking 💻🏴‍☠️

Lobsterstmp.0ut Volume 4 <a href="https://lobste.rs/s/1ridxo" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://lobste.rs/s/1ridxo</a> <a href="https://mastodon.social/tags/linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#linux</a> <a href="https://mastodon.social/tags/reversing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#reversing</a> <a href="HTTP://Tmpout.sh/4" rel="nofollow noopener noreferrer" translate="no" target="_blank">HTTP://Tmpout.sh/4</a>

LobstersIntroducing GREASE: An Open-Source Tool for Uncovering Hidden Vulnerabilities in Binary Code <a href="https://lobste.rs/s/qykkq8" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://lobste.rs/s/qykkq8</a> <a href="https://mastodon.social/tags/formalmethods" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#formalmethods</a> <a href="https://mastodon.social/tags/release" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#release</a> <a href="https://mastodon.social/tags/reversing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#reversing</a> <a href="https://mastodon.social/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://www.galois.com/articles/introducing-grease" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.galois.com/articles/introducing-grease</a>

LobstersFull-stack Reverse Engineering of the Original Microsoft Xbox <a href="https://lobste.rs/s/l4fcpb" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://lobste.rs/s/l4fcpb</a> <a href="https://mastodon.social/tags/video" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#video</a> <a href="https://mastodon.social/tags/hardware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hardware</a> <a href="https://mastodon.social/tags/retrocomputing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#retrocomputing</a> <a href="https://mastodon.social/tags/reversing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#reversing</a> <a href="https://www.youtube.com/watch?v=hGlIkgmhZvc" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.youtube.com/watch?v=hGlIkgmhZvc</a>

LobstersExtracting content from an LCP "protected" ePub <a href="https://lobste.rs/s/1htmqf" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://lobste.rs/s/1htmqf</a> <a href="https://mastodon.social/tags/reversing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#reversing</a> <a href="https://shkspr.mobi/blog/2025/03/towards-extracting-content-from-an-lcp-protected-epub/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://shkspr.mobi/blog/2025/03/towards-extracting-content-from-an-lcp-protected-epub/</a>

LobstersA 6502 emulator written in busybox ash via <a href="https://freeradical.zone/@craftyguy" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@craftyguy</a> <a href="https://lobste.rs/s/hi8hjp" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://lobste.rs/s/hi8hjp</a> <a href="https://mastodon.social/tags/linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#linux</a> <a href="https://mastodon.social/tags/reversing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#reversing</a> <a href="https://social.treehouse.systems/@cas/114171610700263367" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://social.treehouse.systems/@cas/114171610700263367</a>

LobstersA long evening with iOS and macOS Sandbox (2018) via <a href="https://rheinneckar.social/@niklaskorz" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@niklaskorz</a> <a href="https://lobste.rs/s/z3ifdc" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://lobste.rs/s/z3ifdc</a> <a href="https://mastodon.social/tags/ios" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ios</a> <a href="https://mastodon.social/tags/mac" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#mac</a> <a href="https://mastodon.social/tags/reversing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#reversing</a> <a href="https://mastodon.social/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://web.archive.org/web/20220313072719/https://geosn0w.github.io/A-Long-Evening-With-macOS's-Sandbox/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://web.archive.org/web/20220313072719/https://geosn0w.github.io/A-Long-Evening-With-macOS's-Sandbox/</a>

LobstersZen and the Art of Microcode Hacking <a href="https://lobste.rs/s/qnfuus" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://lobste.rs/s/qnfuus</a> <a href="https://mastodon.social/tags/reversing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#reversing</a> <a href="https://mastodon.social/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://bughunters.google.com/blog/5424842357473280/zen-and-the-art-of-microcode-hacking" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://bughunters.google.com/blog/5424842357473280/zen-and-the-art-of-microcode-hacking</a>

LobstersHacking the Xbox 360 Hypervisor Part 1: System Overview <a href="https://lobste.rs/s/dperqz" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://lobste.rs/s/dperqz</a> <a href="https://mastodon.social/tags/reversing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#reversing</a> <a href="https://mastodon.social/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://mastodon.social/tags/virtualization" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#virtualization</a> <a href="https://icode4.coffee/?p=1047" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://icode4.coffee/?p=1047</a>

Recent searches

Search options

Administered by:

Server stats:

#reversing