In forensic investigation as well as malware research, hashing is one of the most prevalent techniques to identify a file as malicious or not. Hashing is a mathematical process that calculates a unique fingerprint for a given input. In the past, hashing was even used in early anti-malware engines to…

I often do infographics to share security concepts or best practices. This page will list the different files. I will update it periodically so stay tuned by following me on Twitter or Medium. If you like these infographics, you can support me on BuyMeACoffee. Thanks! :) Consider becoming a Medium…

I investigated a campaign targeting the cryptocurrency industry. I wrote a detailed report that includes TTP, IOC and more. This thread was originally posted on Twitter and saved here! DEV-0139 launches targeted attacks against the cryptocurrency industry - Microsoft Security Blog Over the past several years, the cryptocurrency market has considerably expanded, gaining the interest of investors and…www.microsoft.com

I work with Jupyter notebook on a daily base for analysis, threat intelligence and creating workflows! I created a Github page to share some of them! I update it periodically! This thread was originally posted on Twitter and saved here! 🤓

Identify similar icons used in malware — On VirusTotal there is an interesting feature to look for malware similarities: “main_icon_dhash”. Dhash is a visual hash that can be used to identify similar images. It differs from the other hash algorithm because it does not require an exact match to find similar images. …

How to study an exploit to discover more? — This year I presented at @ComfyConAU about code graphology and how it can be used for exploit hunting! Here is an overview on what was discussed and how you can apply code graphology in your research! This thread was originally posted on Twitter and saved here! 🤓 Graphology is…

Visualizing Cybersecurity concepts can be a terrific way to learn more about specific tools, methodologies, and techniques! Here is a post that shows six useful infographics on threat intelligence and related topics! This thread was originally posted on Twitter and saved here! 🤓 1 — Practical Threat Intel 2 — Tactics, Techniques and Procedures TTP is an important concept to understand…

This is a list of various resources to learn more about malware techniques, how to analyse them and how to improve your detection! This thread was originally posted on Twitter and saved here! 🤓 #1: The Unprotect Project Of course, I couldn’t start this thread without talking about this project we started in 2015…