boredhackerblog
I am posting because I'm bored.
Pages
(Move to ...)
Home
Links
Motivational
BoredHackerBlog Github
BoredHackerBlog Notes
▼
Saturday, March 23, 2024
observed in the wild - batch obfuscation technique and an interesting way to run powershell code
›
Saw these two things in the wild while looking at some samples. Batch Obfuscation Malicious batch file was found and when opened in notepad/...
Thursday, December 21, 2023
Speeding up report reading and security/SOC alert triaging by auto-highlighting keywords on webpages
›
Introduction: If you're a security analyst or threat researcher, you may spend a lot of time reading reports/blogs or looking through SI...
Friday, November 17, 2023
Quick sample analysis which ended up dropping asyncrat
›
I came across a sample that involving traffic to 91.92.242.28:222. There is sandbox report here: https://tria.ge/231113-v9lgtaec41 I only ...
Sunday, October 22, 2023
Using command line redirection and DLL ordinals to potentially bypass detections
›
I came across this during a pentest. The techniques mentioned here are not new and there are already some detections in place but I don'...
Saturday, October 7, 2023
Installing Whonix Gateway on Proxmox for threat & malware research
›
Intro Whonix is a tool for routing traffic through Tor. Whonix VM's come as Desktop/with UI or CLI. They provide two types of VM's,...
Tuesday, November 29, 2022
OpenSSL-1.0.0-fipps Linux Backdoor - Notes
›
Introduction: In some security/malware chat room, someone posted about an ELF backdoor, at the time, I couldn't find much information ab...
›
Home
View web version