❌
There are new articles available, click to refresh the page.
Before yesterdayHexacorn Ltd

Shopping for LOLbins

By: adam
10 June 2021 at 22:13
In this Twit that I posted a few weeks ago I demoed how to use older versions of Photoshop and Illustrator to execute calculator via their internal scripting engine that […]

Beyond good ol’ Run key, Part 138

By: adam
23 January 2022 at 00:03
This is a post that should have appeared here at least 10 years ago. There is an enigmatic Registry entry: HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\PeerDist\Extension\PeerdistDllName=peerdist.dll that I came across many times before. The […]

Dexray v2.32

By: adam
23 January 2022 at 00:07
I was recently contacted by Oskar who had a problem decrypting Defender for Mac Quarantine files. After quick investigations we discovered that the encrypted file doesn’t really conform to any […]

Infosec Salaries – the myth and the reality

By: adam
21 April 2022 at 23:00
Update 3 If you want to know more about salaries at FAANG and all over the world look at the following resources: levels.fyi h1bdata.info https://docs.google.com/spreadsheets/d/1TWvPQalmwl1sIS3n2eOU4KST4oJwcxtSfT8lMo9IgVM/edit https://twitter.com/LadyCyberRosie/status/1490695657249816583 Update 2 tl; dr; […]

Hijacking HijackThis

By: adam
20 May 2022 at 21:46
Long before endpoint event logging became a norm it was incredibly difficult to collect information about popular processes, services, paths, CLSIDs, etc.. Antivirus companies, and later sandbox companies had tones […]
❌
❌