In forensic investigation as well as malware research, hashing is one of the most prevalent techniques to identify a file as malicious or not. Hashing is a mathematical process that calculates a unique fingerprint for a given input. In the past, hashing was even used in early anti-malware engines to…

I often do infographics to share security concepts or best practices. This page will list the different files. I will update it periodically so stay tuned by following me on Twitter or Medium. If you like these infographics, consider purchasing my book, “Visual Threat Intelligence: An Illustrated Guide For Threat…

I investigated a campaign targeting the cryptocurrency industry. I wrote a detailed report that includes TTP, IOC and more. This thread was originally posted on Twitter and saved here! DEV-0139 launches targeted attacks against the cryptocurrency industry - Microsoft Security Blog Over the past several years, the cryptocurrency market has considerably expanded, gaining the interest of investors and…www.microsoft.com

I work with Jupyter notebook on a daily base for analysis, threat intelligence and creating workflows! I created a Github page to share some of them! I update it periodically! This thread was originally posted on Twitter and saved here! 🤓

A Look Back at My Cybersecurity Highlights from 2022 — Hello Friend!👋 As we near the end of 2022, I wanted to reach out and provide a recap of the year. It has been a busy and eventful year for me, both personally and professionally. I have been sharing a lot of content on topics such as malware analysis, threat intelligence, and…

Identify similar icons used in malware — On VirusTotal there is an interesting feature to look for malware similarities: “main_icon_dhash”. Dhash is a visual hash that can be used to identify similar images. It differs from the other hash algorithm because it does not require an exact match to find similar images. …

How to study an exploit to discover more? — This year I presented at @ComfyConAU about code graphology and how it can be used for exploit hunting! Here is an overview on what was discussed and how you can apply code graphology in your research! This thread was originally posted on Twitter and saved here! 🤓 Graphology is…

Visualizing Cybersecurity concepts can be a terrific way to learn more about specific tools, methodologies, and techniques! Here is a post that shows six useful infographics on threat intelligence and related topics! This thread was originally posted on Twitter and saved here! 🤓 If you like these infographics, consider purchasing…

This is a list of various resources to learn more about malware techniques, how to analyse them and how to improve your detection! This thread was originally posted on Twitter and saved here! 🤓 #1: The Unprotect Project Of course, I couldn’t start this thread without talking about this project we started in 2015…