Readers like you help support my blog. When you make a purchase using links on our site, we may earn an affiliate commission! Thank you!

Monday, April 13, 2015

Blaze's Security Blog: Remediate VBS malware

Blaze's Security Blog: Remediate VBS malware: I have developed a small tool that will aid you to remove VBS malware from a machine or in a network. I made this some months ago when I sa...

Tuesday, April 7, 2015

Windows Incident Response: Windows Event Logs

Windows Incident Response: Windows Event Logs: Dan recently tweeted: Most complete forensics-focused Event Log write-ups? # DFIR I have no idea what that means.  I'm going to assu...

Monday, April 6, 2015

Thursday, April 2, 2015

A Few Thoughts on Cryptographic Engineering: Truecrypt report

A Few Thoughts on Cryptographic Engineering: Truecrypt report: A few weeks back I wrote an update on the Truecrypt audit  promising that we'd have some concrete results to show you soon. Thanks to so...

Wednesday, April 1, 2015

Dynamoo's Blog: Malware spam: "Australian Taxation Office - Refund...

Dynamoo's Blog: Malware spam: "Australian Taxation Office - Refund...: This fake tax notification spam leads to malware hosted on Cubby. From :    Australian Taxation Office [noreply@ato.gov.au] Date :    ...

Monday, March 30, 2015

Dynamoo's Blog: Malware spam: "Invoice ID:12ab34" / "123"

Dynamoo's Blog: Malware spam: "Invoice ID:12ab34" / "123": This terse spam has a malicious attachment: From:    Gerry Carpenter Date:    25 March 2015 at 12:58 Subject:    Invoice ID:34bf33 1...

Saturday, March 21, 2015

Scrutiny from an Inquisitive mind: Defeating EMET 5.2

Scrutiny from an Inquisitive mind: Defeating EMET 5.2: Since my last post, i thought if Malware Bytes Anti Exploit can be bypassed in a targetted attack why not work on bypassing EMET using rop ...

Friday, March 20, 2015

Thursday, March 19, 2015

Wednesday, March 18, 2015

Jump ESP, jump!: Thousand ways to backdoor a Windows domain (forest...

Jump ESP, jump!: Thousand ways to backdoor a Windows domain (forest...: When the Kerberos elevation of privilege (CVE-2014-6324 / MS14-068) vulnerability has been made public, the remediation paragraph of follo...

Dynamoo's Blog: Malware spam: "December unpaid invoice notificatio...

Dynamoo's Blog: Malware spam: "December unpaid invoice notificatio...: This spam comes with no body text, but does come with a malicious attachment. From :    Korey Mack Date :    18 March 2015 at 11:04 ...

Friday, March 13, 2015

Malware Battle: 750,000 Computers Infected With Malware In Belgium...

Malware Battle: 750,000 Computers Infected With Malware In Belgium...: In the first half of 2014 were 750,000 computers infected with malware and Belgium were part of one or several botnets, according to figu...

Friday, January 30, 2015

Google Lat Long: Google Earth Pro is now free

Google Lat Long: Google Earth Pro is now free: Over the last 10 years, businesses, scientists and hobbyists from all over the world have been using Google Earth Pro for everything from...