@a14xt Profile picture

a1ext

@a14xt

Malware Researcher, Software Engineer, author of https://t.co/qPyd8X0Cru 🖤cats, beer and anime :3 Opinions are mine.

Joined September 2016
Similar User
x64dbg photo

@x64dbg

Israel Gubi photo

@israelgu_

Jiří Vinopal photo

@vinopaljiri

Catch all the Malwa photo

@MalwareCantFly

CAPE Sandbox photo

@CapeSandbox

Dee photo

@ViriBack

Mark photo

@_marklech_

m4n0w4r photo

@kienbigmummy

avman photo

@avman1995

Fumik0_ photo

@fumik0_

Itay Cohen🌱 photo

@megabeets_

Matthew Mesa photo

@mesa_matt

sean photo

@seanmw

CrossedBytes ☦️ photo

@CrossedBytes

Dmitry Melikov photo

@DmitriyMelikov

a1ext Reposted

"Native function and Assembly Code Invocation" My first @_CPResearch_ post showing tricks and practical usage of #IDA #Appcall, #Dumpulator @mrexodia and pure #Unicorn. Getting the best and full of annotated code snippets🤗

Tweet Image 1

For a reverse engineer, the ability to directly call a function from the analyzed binary can be a shortcut that bypasses a lot of grief. In this article, we explore and compare 3 ways of invoking functions: IDA Appcall, Dumpulator, and Unicorn Engine. research.checkpoint.com/2022/native-fu…



a1ext Reposted

Iranian spear-phishing operation against high-ranking officials 🇮🇱🇺🇸 Infrastructure includes: 📎 Litby[.]us - Custom fake URL shortener 📄 validation.com for identity documents theft 🇮🇷 Connection to Phosphorus APT Read more 👇 research.checkpoint.com/2022/check-poi…

Tweet Image 1
Tweet Image 2

a1ext Reposted

Eh, what? RCE in Curl in Windows?

Tweet Image 1

a1ext Reposted

#Cybersecurity experts from Kaspersky will speak at #AVAR2021Virtual on the #GhostEmperor rootkit that is effective against the latest #Windows10 systems and describe the actor’s profile and advanced tools and techniques to remain undetected. Register at aavar.org/avar2021/index…

Tweet Image 1

RIP Alexi

Statement from Bodom After Midnight: It is with heavy hearts and great sadness that we have to announce the passing of Alexi Laiho. We are absolutely devastated and heartbroken for the sudden loss of our dear friend and band member. Daniel, Mitja & Waltteri

Tweet Image 1


a1ext Reposted

[CPR-Zero] CVE-2020-6008, CVE-2020-6009 & CVE-2020-6010 (Learning Management Systems): Multiple critical vulnerabilities (SQLi + File Write) in the 3 leading WordPress LMS Plugins cpr-zero.checkpoint.com/vulns/cprid-21… cpr-zero.checkpoint.com/vulns/cprid-21… cpr-zero.checkpoint.com/vulns/cprid-21…


a1ext Reposted

Based on the insights from of our research, we are happy to present our new Anti-Debug Encyclopedia. All the techniques which are described in this encyclopedia are implemented in our ShowStopper open-source project as well! anti-debug.checkpoint.com


a1ext Reposted

TIL: In Python, if property access raises AttributeError, and the class implemented __getattr__, it will get called with the property name. This results in some very cryptic errors. Here, enjoy! repl.it/repls/PresentB… #Python

Tweet Image 1

a1ext Reposted

Compilers Gone Wild: We decided to see what happens when compilers are facing undefined behavior, so we asked them to tell us research.checkpoint.com/2020/optout-co…


a1ext Reposted

Another useful plugin is labeless from @a14xt.Labeless allows us to enrich a research database in IDA with dynamic debugging info which is not available during static analysis – with the help of side debugger.github.com/a1ext/labeless…


a1ext Reposted

New glibc malloc post-attack mitigation called "Safe-Linking" by @EyalItkin Should be integrated next week! Eyal, thanks for all of your patience. sourceware.org/pipermail/libc… @gnutools


a1ext Reposted

If you've ever wondered about the secret life of Nigerian spammers, this is definitely the article for you. Read all about one cybercriminal's decade-long quest of bought RATs, stolen credit cards, back-stabbed colleagues and looming paranoia. Read more @ research.checkpoint.com/2020/the-insid…


a1ext Reposted

CVE-2020-0796 - a "wormable" SMBv3 vulnerability. Great... 😂

Tweet Image 1

a1ext Reposted

Labeless : a multipurpose IDA Pro plugin system for labels/comments sync w/ a debugger backend, with complex memory dumping + interactive Python scripting capab' : github.com/a1ext/labeless cc @a14xt Dumping multiple injections into a single database : youtube.com/watch?v=M5K5Ld…


a1ext Reposted

Tired of transferring your labels, names and comments from IDA to your debuggers? Exhausted by the process of dumping memory from debugger, fixing IAT and moving it to IDA? You better try Labeless >> github.com/a1ext/labeless A life-changing plugin by @a14xt & @_CPResearch_


Loading...

Something went wrong.


Something went wrong.