boredhackerblog
I am posting because I'm bored.
Pages
(Move to ...)
Home
Links
Motivational
BoredHackerBlog Github
BoredHackerBlog Notes
▼
Tuesday, November 29, 2022
OpenSSL-1.0.0-fipps Linux Backdoor - Notes
›
Introduction: EDIT - Sep 2024: This was originally written in November 2022. Recently (in 2024), CISA published an advisory where this was a...
Monday, November 21, 2022
Looking for EvilProxy - Notes
›
Introduction: This started with someone asking about EvilProxy and any signatures for detecting it. EvilProxy is a phishing as a service (P...
Monday, October 17, 2022
Researching golang malware and how I hate security industry naming conventions - Part 1
›
While doing some research on the use of golang in malware, I came across this golang sample here: https://www.virustotal.com/gui/file/020f...
Researching golang malware and how I hate security industry naming conventions - Part 2
›
I did some string searches in Hybrid-Analysis as well to look for more files. (Thanks Hybrid-Analysis for a researcher account!) I finally e...
Saturday, October 15, 2022
Looking at process relationships from malware sandbox execution data
›
Introduction: This blog post discusses looking at process relationships, specifically from malware sandbox execution data. One of the essent...
Thursday, August 18, 2022
Remotely managing Sysmon configuration through Graylog Sidecar
›
Introduction: Sysmon is a tool from Microsoft that can help with collecting better logs (compared to default Windows logs) regarding the sys...
‹
›
Home
View web version
