by timi | Mar 22, 2023 | blog, Offsec
In research by Jeff Sims at HYAS, he creates “Blackmamba,” an “AI synthesize polymorphic keylogger” that uses python to modify its program randomly. The basic components of this polymorphic keylogger require a LLM, large language model like ChatGPT. The malicious...
by timi | Mar 20, 2023 | blog
The title of this blog post may not be entirely correct, as it is difficult to compare vulnerability assessment with MITRE ATT&CK based gap assessment in objective measures. However, this post aims to evangelize the joint raison d’être of vulnerability...
by timi | Mar 17, 2023 | blog
The company corrects actively exploited vulnerabilities that affected Microsoft Outlook and the Windows OS in this month’s batch of security updates. Microsoft plugged two zero-days, one affecting Windows systems and another in Microsoft Outlook, for...
by timi | Mar 16, 2023 | blog
It is not a big secret that we at FalconForce work a lot with, and are big fans of, both Microsoft Defender for Endpoint (MDE) and Sysinternals Sysmon. I still use and maintain my Sysmon-modular configuration project quite frequently. One of the questions we quite...
by timi | Feb 20, 2023 | blog
BEC gangs Midnight Hedgehog and Mandarin Capybara show how online marketing and translation tools are making it easy for these threat groups to scale internationally. Business email compromise (BEC) attacks involve impersonating an executive or business partner in...
Recent Comments