Blog page

ChatGPT Powered Malware Bypasses EDR

In research by Jeff Sims at HYAS, he creates “Blackmamba,” an “AI synthesize polymorphic keylogger” that uses python to modify its program randomly. The basic components of this polymorphic keylogger require a LLM, large language model like ChatGPT. The malicious...

read more
Blog page

Windows zero-day & Outlook zero-day resolved

The company corrects actively exploited vulnerabilities that affected Microsoft Outlook and the Windows OS in this month's batch of security updates.   Microsoft plugged two zero-days, one affecting Windows systems and another in Microsoft Outlook, for March...

read more
Blog page

Sysmon vs Microsoft Defender for Endpoint

It is not a big secret that we at FalconForce work a lot with, and are big fans of, both Microsoft Defender for Endpoint (MDE) and Sysinternals Sysmon. I still use and maintain my Sysmon-modular configuration project quite frequently. One of the questions we quite...

read more
Blog page

How to turn traffic lights green with Flipper Zero?

We've talked about this tiny gadget before: the Flipper Zero. Officially, it's a $170 tamagotchi-fied hacking gadget with a sub-gigahertz radio and some accessory pins. Unofficially, it's a menace's best friend. Most recently, one tinkerer named Peter Fairlie took to...

read more
Blog page

Detecting common Linux persistence techniques with Wazuh

Persistence techniques are mechanisms or configurations threat actors use to maintain illicit access to compromised endpoints after gaining initial access. Persistence guarantees that attackers have endpoint access regardless of system restarts, changed credentials,...

read more
Blog page

Security alerts | February 2023

Below you will find information about the current security alerts of February 2023.   VMware ESXi – CVE-2021-21974 A new vulnerability was reported by security researchers. This article describes an explosion in the compromises of VMware ESXi hypervisors with...

read more
Blog page

OSI model from a different angle | Infographic

The Open Systems Interconnection model (OSI model) is a conceptual model that 'provides a common basis for the coordination of [ISO] standards development for the purpose of systems interconnection'. In the OSI reference model, the communications between a computing...

read more

Pin It on Pinterest