Security through explanation
On the 16th of January 2018, I participated in the CTF of Cisco at DeFabrique in Utrecht. The duration of the CTF was from 10:00 until 15:45, nearly 6 hours. After solving quite some challenges, I managed to secure the second place and won a Raspberry Pi 3 and a couple of Ikea Smart Lamps. … Read more
This year during the 34c3 Congress, I held a lightning talk about Capricorn. During this presentation I asked for suggestions, feedback and possible collaboration. I’m glad to announce that this talk has sparked the interest of multiple people at the congress, but also via e-mail and Telegram afterwards. The conversations that I’ve had afterwards were … Read more
This is the first Malware Analysis I’ve posted, more will follow in the future. The malware has two layers of encryption which I’ve decrypted and analysed. In the report is a link to my Github repository for an automated decryption tool. The report can be downloaded here.
Malware is always changing and evolving, and so should anti-malware solutions. Because of the nature of the anti-malware solutions, they’re always ‘defending’ a system: only after the user downloads or executes something, the solution interacts with the newly created file or process. Based on sample analysis, new mitigation techniques are created and deployed. Ideally, one … Read more