Final slides of my presentation yesterday at Black Hat Europe 2019, about malicious VBA macros and recent advances in the attack & defence sides: Featuring #oletools/olevba, ViperMonkey, MacroRaptor, EvilClippy #BHEU #BHEU2019

RT @awkwardgoogle: I had NO IDEA that Excel World Championship existed, but watching people being excellent at what they do is always fasci…

RT @vxunderground: This is a reminder to everyone that your malware payload does not need to be ultra-1337 for it to be effective or evasiv…

RT @Dinosn: Windows 11 BitLocker-Encrypted Files Accessed Without Disassembling Laptops

@Bit111111 Yes of course, there are lots of great examples of polyglot files available online, and there are even tools like mitra from @angealbertini that can generate such files. Here I'm really interested in malicious use of that technique "in the wild".

RT @angealbertini: Peeps: I'm looking for a PoC (not mine) which was a graphical game (breakout?) in PDF+JS+WebAsm (not a polyglot), Chrome…

RT @manekinekko: Running Doom in a... PDF file ! 🤯🤯🤯 Credits:

RT @EXPMON_: I've released the details of this Enjoy! Blog post: EXPMON detected "zero-day behavior" in PDF sampl…

RT @sekoia_io: 🇷🇺 #DoubleTap Campaign: #Russia-nexus APT possibly related to #APT28 conducts cyber espionage on Central Asia and Kazakhstan…

RT @thomasrinsma: Yes, PDF runs DOOM! (PDFium only for now)

RT @tom_doerr: A Bash script for auditing security and performance of Linux VPS, checking SSH config, firewall status, system updates, and…

RT @angealbertini: Let’s try something new in 2025… This saturday at 8pm CET, I'll stream about crafting a valid PDF file from scratch. We’…

RT @5mukx: An unexpected journey into Microsoft Defender's signature World:

RT @vivekramac: Happy New Year everyone! 2025 is a very interesting number: (a) It is the square of the sum of the first nine numbers: (…

RT @sans_isc: Goodware Hash Sets

RT @Enno_Insinuator: Apple Platform Security Guide, December 2024 release [PDF]

RT @blackorbird: Using LLMs to Obfuscate Malicious JavaScript

RT @cyb3rops: I have tested and added the #YARA rules by @sekoia_io to the YARA Forge project YARA Forge automates the collection, standar…

RT @jstrosch: Malware Mondays #09 - File Identification and Hashing Algorithms

RT @ale_sp_brazil: Malwoverview version 6.1.0 has just been released: To install it: $ python -m pip install -U…