GitHub - LloydLabs/ntqueueapcthreadex-ntdll-gadget-injection: This novel way of using NtQueueApcThreadEx by abusing the ApcRoutine and SystemArgument[0-3] parameters by passing a random pop r32; ret gadget can be used for stealthy code injection.
https://github.com/LloydLabs/ntqueueapcthreadex-ntdll-gadget-injection![GitHub - LloydLabs/ntqueueapcthreadex-ntdll-gadget-injection: This novel way of using NtQueueApcThreadEx by abusing the ApcRoutine and SystemArgument[0-3] parameters by passing a random pop r32; ret gadget can be used for stealthy code injection.](/image/screenshot/cde277d2f6b22b85935512cbbed7baf9.webp)
an0n on Twitter: "detecting EDR services remotely without admin privs. indicators: - installed services: [MS-LSAT] LsarLookupNames() - running processes: named pipes (there are some characteristic to EDRs) needs some more testing and cleanup before release, but looks like promising. https://t.co/2U7dFUDzFV" / Twitter
https://twitter.com/an0n_r0/status/1619145879591735297![an0n on Twitter: "detecting EDR services remotely without admin privs. indicators: - installed services: [MS-LSAT] LsarLookupNames() - running processes: named pipes (there are some characteristic to EDRs) needs some more testing and cleanup before release, but looks like promising. https://t.co/2U7dFUDzFV" / Twitter](/image/screenshot/34ce4695af02cade5d681252049c59c7.webp)
APT_REPORT/RedReport2023-Picus.pdf at master · blackorbird/APT_REPORT · GitHub
https://github.com/blackorbird/APT_REPORT/blob/master/summary/2023/RedReport2023-Picus.pdf
Twitter gets rid of SMS 2FA for non-Blue members — What you need to do
https://www.bleepingcomputer.com/news/security/twitter-gets-rid-of-sms-2fa-for-non-blue-members-what-you-need-to-do/
Samsung Introduces New Feature to Protect Users from Zero-Click Malware Attacks
https://thehackernews.com/2023/02/samsung-introduces-new-feature-to.html
Fortinet Issues Patches for 40 Flaws Affecting FortiWeb, FortiOS, FortiOS, and FortiProxy
https://thehackernews.com/2023/02/fortinet-issues-patches-for-40-flaws.html
GitHub - embee-research/Yara
https://github.com/embee-research/Yara
MalwareBazaar | Browse Checking your browser
https://bazaar.abuse.ch/sample/b91340d156582060095227e8d26f29f5ffc8b0e8fbf35a392b649adc60a5d4ab/
MalwareBazaar | Browse Checking your browser
https://bazaar.abuse.ch/sample/6778c59a29e25d722230163bea272ece58d2d3696fbce4347c20104e8fb735dc/
Qakbot/Qakbot_BB16_20.02.2023.txt at main · pr0xylife/Qakbot · GitHub
https://github.com/pr0xylife/Qakbot/blob/main/Qakbot_BB16_20.02.2023.txt
Vidar Stealer H&M Campaign - 0xToxin Labs
https://0xtoxin-labs.gitbook.io/malware-analysis/malware-analysis/vidar-stealer-campaign#the-phish