Alexandre Borges @ale_sp_brazil
Vulnerability Researcher and Exploit Developer linktr.ee/ale_sp_brazil Joined July 2009-
Tweets8K
-
Followers23K
-
Following111
-
Likes3K
I have been slowly writing the next articles: 1. MAS 08: Introduction to MacOS malware analysis. 2. ER 03: macOS/iOS (part 01) 3. MAS 09: Shellcode Analysis 4. ER 04: Browsers or Hypervisors (part 01) 5. RE 05: Hypervisors or Browsers (part 01) MAS 09 will be the last article…
In some situations during vulnerability research I've found functions flagged as functions of no return, so it may be useful to remember how to identify them and, eventually, fix problems. This picture is just a quick review. #idapro #vulnerability #reverseengineering
If IDA UI hangs on you, this hack plugin might be able to save the day: github.com/0xeb/allthings…
@Gtwy @el_nawser @rucam365 I wrote a whole blog post on the awfulness of RDP NLA + PKU2U which is one of the ways you can connect with an Entra ID account in RDP. It's possible to make it work, but it's just... ugh. awakecoding.com/posts/rdp-nla-…
✍️🇻🇳 My quick note how to decrypt strings and configuration of #Qakbot #Qbot version 5.0 kienmanowar.wordpress.com/2024/04/24/qui…
For people asking me if I will publish a new version of Malwoverview, the answer is YES, and more details will be released in the coming weeks. Even if I am forever away from malware analysis, I will maintain the project. github.com/alexandreborge… #malware #threathunting
I'm thrilled to announce that I'll be presenting a previously-unnamed vulnerability class at @BlueHatIL. Oh, and I'll be dropping 0day. Be sure to stop by, learn something new, pwn the kernel, and have a coffee. It should be a good time. microsoftrnd.co.il/bluehatil/conf…
Join me tomorrow on the Off By One Security stream with special guest Pavel Yosifovich @zodiacon for a session on Windows Device Drivers Internals, ...and Some Additional Reversing! 19-April at 11AM PT. Looking forward to this one! youtube.com/watch?v=7Trgnw…
People ask why I haven't spoken at conferences in the last four years. In fact, my decision was made in 2022 for several reasons: 1. Due to the nature of my work (Windows/Hypervisors/Browsers exploitation), I cannot comment or present anything (and it isn't recommended). 2. The…
There is still time to register for my new hands-on debugging class next month! I’m not likely to teach this class again soon so if you want to take it, now is your chance 😊
@jstrosch Thanks for using PEbear! I know it is an old video, so it makes sense that you remap it this way. Just FYI, now the same thing can be done just by one click: youtube.com/watch?v=9Cqq44…
@ancailliau @adulau @cyb3rops Only executable files or any file format? There are some datasets for specific formats, for example PDF: corp.digitalcorpora.org/corpora/files/… For MS Office: decalage.info/fr/download_ms… Caveat: those datasets may contain some malicious files. I'd be interested to find datasets for other formats.
Shout out to @aall86 for building SkTool. The easiest way to find out what Hypervisor / secure kernel features are enabled on a system
We’ve recently introduced IDA 8.4, but have you noticed that it comes with a built-in tool for generating FLIRT signatures from a current database? Read more about the makesig plugin 🌐 hex-rays.com/blog/an-overvi… #idapro #makesig
✍️🇻🇳My quick note about techniques employed by the threat actor in the phishing email to distribute #WarZoneRAT via #DBatLoader. kienmanowar.wordpress.com/2024/04/09/qui…
I've got it today, so I can show how it looks IRL 😊. I think the print and overall quality is good. I believe some of you got it too. Are you happy from how it came out?
I've got it today, so I can show how it looks IRL 😊. I think the print and overall quality is good. I believe some of you got it too. Are you happy from how it came out? https://t.co/2qhJC02zkA
Florian Roth @cyb3rops
180K Followers 2K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇Justin Elze @HackingLZ
52K Followers 5K Following Hacker/CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race carsYarden Shafir @yarden_shafir
19K Followers 273 Following A circus artist with a visual studio licenseKarsten Hahn @struppigel
22K Followers 702 Following Malware Researcher at G DATA. Ransomware hunter. he/him 🦔🌈🏳️⚧️Thomas Roccia 🤘 @fr0gger_
25K Followers 2K Following Sr. Threat Researcher @Microsoft, Malware Warlock, Threat Intel, Python🧡- Former @McAfee_labs, Goon @Defcon, Creator of #UnprotectProject - Tweets are my ownblackorbird @blackorbird
28K Followers 600 Following Peace and Love. Just Analysis/Hunter. #APT #threatIntelligence #Exploit Need JobJiří Vinopal @vinopaljiri
8K Followers 429 Following Threat Researcher at Check Point @_CPResearch_ #DFIR #Reversing - All opinions expressed here are mine only. https://t.co/iWvwWF1AnNhasherezade @hasherezade
84K Followers 845 Following Programmer, #malware analyst. Author of #PEbear, #PEsieve, #TinyTracer. Private account. All opinions expressed here are mine only (not of my employer etc)Clandestine @akaclandestine
36K Followers 5K Following | Security | Osint | Threat Research | Opsec | Threat Intelligence | Infosec | Threat Hunting |Stephen Sims @Steph3nSims
20K Followers 601 Following Perpetual Student | SANS Fellow | Musician | Braggart Hater | Gray Hat Hacking | VR | 🏂 | deadcode | https://t.co/CadJehomsUSentinelOne @SentinelOne
52K Followers 1K Following ONE autonomous platform to prevent, detect, respond, and hunt. Do more, save time, secure your enterprise: https://t.co/N75g1HAnCs 🐱💻Matthew @embee_research
12K Followers 1K Following Malware Researcher & Reverse Engineer | Creating and Sharing Educational Cyber ContentNikhil @Ox4d5a
15K Followers 1K Following Penetration Tester | i XCHG 0's 1's and do hacks | Red Team Sorcery https://t.co/6LUhkvNA77 | #eJPT | #OSCP | #CRTP | #CRTA | #CESP | #CRTEBlue Team News @blueteamsec1
44K Followers 9K Following The cybersecurity home for the latest #BlueTeam, #DFIR, and #ThreatHunting news and tools.Will @BushidoToken
29K Followers 3K Following Threat Intel & Hunting @Equinix | Co-founder @CuratedIntel | Co-author @SANSForensics FOR589 | @darknetdiaries #126: REvilPavel Yosifovich @zodiacon
12K Followers 939 Following Developer, trainer, author and (sometimes) speaker. Founder at @trainsec academy.Amine @AmineHahahaHaaa
1 Followers 65 FollowingSpock @Sp0ck1701
8 Followers 180 Followingmad31k @mad31k
9 Followers 106 FollowingOneBadAlien @WilliamTaack
125 Followers 4K FollowingMani @Supernal_Future
6 Followers 255 FollowingSAL @0x_sal
105 Followers 226 FollowingP.MADHUSEKHAR @pmsterminator
206 Followers 109 FollowingDavid Anderson @WattWizard_Byte
288 Followers 746 Following Power Solutions🇸🇪 Scientist | Engineer | Cyber 🔌 Power Solution Scientist by day, #CyberGeek by night.Rey Marquez Jr. @CyberVanTil
20 Followers 140 Following. @L0k1ThK
0 Followers 149 FollowingCucoo @cucooOnX
14 Followers 78 FollowingBLACK TEAM SEC @PNoob77668
4 Followers 12 Following BLACK TEAM SEC is a YouTube channel dedicated to providing informative and practical hacking tutorials.구정현 (adel) @AdelJh03kjh0421
3 Followers 151 FollowingDANIEL MUTHOMI GATOBU.. @IcingDan
130 Followers 3K Following Riggy technology “Money is a reward for solving https://t.co/MU14qdBgwB God we trust. STS YOUTH hustle and bustle PROJECT INDUSTRY article 55Geyson @geysoninjr
22 Followers 469 FollowingAhmed_yaser @a2y2_
24 Followers 257 Following cyber security & data analyst engineering student 👨💻 FEE🏫 PS🇵🇸🤍| KW🇰🇼 | EG🇪🇬📍باسل @DragonBe1
0 Followers 107 FollowingHumayoon Baloch @MirHumayoon
54 Followers 431 Following Offensive Security | Sarcasm is my first language | MSc Cybersecurity | 📚Edith Cowan UniversityGeorge @georgekrmndes
12 Followers 618 FollowingYossef @Yossef721227762
0 Followers 736 FollowingAndré Moreno @_AndreMoreno
99 Followers 1K Following Salve para quem está lendo isso me siga se quiser, mas não seja deselegante é nois Gosto de jogos, tecnologia e memes1en00nly @1en00nly
31 Followers 342 Followingiojymbo @iojymbo
16 Followers 175 FollowingPascoal P. Silva Jr. @pascoalpsjunior
38 Followers 96 Following Desenvolvedor de Sites, Sistemas, Serviços Gráficos e Tecnológicos.André Caldas Sousa @AndrCaldasSous1
1 Followers 29 FollowingTalal @cyber6l
96 Followers 231 Following Jr. Cybersecurity Student at @_ksu | Bug Hunter | CTF playerfsdfsd @fsdfsd611439
40 Followers 913 Followingbartwarm @BartWarmerdam
0 Followers 69 FollowingShadowofLight @x_shadowof
4 Followers 40 FollowingAkash Dubey @anonakki
552 Followers 3K Following Social Worker, #Traveller who loves to explore Heritage & Culture of Incredible #भारत ! Proud भारतीय :* वंदे मातरम्, जय हिंद 🙏🚩🥰🇮🇳G123N1Nj4 @G123Nj4
34 Followers 269 FollowingOfek @B1ue6uy
4 Followers 234 FollowingFlorian Roth @cyb3rops
180K Followers 2K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇Yarden Shafir @yarden_shafir
19K Followers 273 Following A circus artist with a visual studio licenseKarsten Hahn @struppigel
22K Followers 702 Following Malware Researcher at G DATA. Ransomware hunter. he/him 🦔🌈🏳️⚧️Thomas Roccia 🤘 @fr0gger_
25K Followers 2K Following Sr. Threat Researcher @Microsoft, Malware Warlock, Threat Intel, Python🧡- Former @McAfee_labs, Goon @Defcon, Creator of #UnprotectProject - Tweets are my ownblackorbird @blackorbird
28K Followers 600 Following Peace and Love. Just Analysis/Hunter. #APT #threatIntelligence #Exploit Need JobJiří Vinopal @vinopaljiri
8K Followers 429 Following Threat Researcher at Check Point @_CPResearch_ #DFIR #Reversing - All opinions expressed here are mine only. https://t.co/iWvwWF1AnNhasherezade @hasherezade
84K Followers 845 Following Programmer, #malware analyst. Author of #PEbear, #PEsieve, #TinyTracer. Private account. All opinions expressed here are mine only (not of my employer etc)Stephen Sims @Steph3nSims
20K Followers 601 Following Perpetual Student | SANS Fellow | Musician | Braggart Hater | Gray Hat Hacking | VR | 🏂 | deadcode | https://t.co/CadJehomsUWill @BushidoToken
29K Followers 3K Following Threat Intel & Hunting @Equinix | Co-founder @CuratedIntel | Co-author @SANSForensics FOR589 | @darknetdiaries #126: REvilPavel Yosifovich @zodiacon
12K Followers 939 Following Developer, trainer, author and (sometimes) speaker. Founder at @trainsec academy.Germán Fernández @1ZRR4H
29K Followers 575 Following 🏴☠️ OFFENSIVE-INTEL 🏴☠️ Cyber Threat Intelligence by Hackers | Security Researcher en https://t.co/rDrSxZASB3 | @CuratedIntel Member | 🥷🧠🇨🇱Josh Stroschein | The.. @jstrosch
8K Followers 1K Following Reverse engineer at FLARE/@Google | @pluralsight author | 700K+ views on YT 😱 Find FREE resources below👇Adam @Hexacorn
24K Followers 1K Following Red Brain, Blue Fingers [email protected] https://t.co/Bm0C9KQDDY RIP TwitterHex-Rays SA @HexRaysSA
7K Followers 45 Following We are a hi-tech company focusing on binary software analysis. Our main products are IDA Pro and the Hex-Rays Decompiler. Inquiries: https://t.co/3AkMrQmJgFŁukasz @maldr0id
13K Followers 999 Following Military-grade @Android malware reverse engineer @Google || "Tom Brady of malware strings analysis" - @MalwareTech || Tweets are my own opinions || he/him ✨🌈🦄Gabriel Landau @GabrielLandau
3K Followers 702 Following WinDbg’er @ Elastic Security. Thoughts are my own. Some of my writing: https://t.co/EMJxj12lut More: https://t.co/pxG2OnO1OC @[email protected]Fabian Bader @fabian_bader
7K Followers 651 Following #Security #Azure #AAD #MDE #M365 #AD #PKI Microsoft MVP Tweets and opinions are my own @[email protected]Phil Stokes ⫍🐠�.. @philofishal
3K Followers 441 Following macOS security researcher, technical writer, editor, #lufc fan. I do not speak for my employer, nor they for me. 😎 https://t.co/3rjSTV1AkJRussianPanda 🐼 �.. @RussianPanda9xx
8K Followers 353 Following Senior Threat Intelligence Researcher at @esthreat | Threat Hunter | Malware AddictPhillip Wylie @PhillipWylie
50K Followers 20K Following Phillip Wylie Show Podcast Host | @schoolpwn & @dcg940 Founder | @pentesterblue coauthor | @TribeOfHackers Red TeamAntonio Cocomazzi @splinter_code
8K Followers 322 Following offensive security - windows internals - reverse engineering | https://t.co/29suYwH66HRyan "Chaps" Chapman @rj_chap
7K Followers 3K Following DFIR & malware analyst. @sansforensics FOR528 Author & FOR610 Instructor. @CactusCon crew. Husband & father. Comments = own.NULL @NUL0x4C
7K Followers 364 Following co-founder of https://t.co/1YRk2CEjaO | https://t.co/edrNVDbqWlSolar Designer @solardiz
14K Followers 1K Following @Openwall founder, @oss_security maintainer, @lkrg_org co-author. RTs don't imply agreement with points of view.Alexandru "sickness" .. @_sickn3ss_
6K Followers 456 Following Him / He. Security Researcher & Lead Content Developer at Offensive Security. Advanced Windows Exploitation (AWE) writer/instructor. @[email protected]Aleksei Kulaev @flat_z
10K Followers 950 Following Console hacker, former Kaspersky Team Lead of Exploits & Network Threat Detection, security researcher. For tips (thx!): https://t.co/VxJMiawFpPMario Hewardt 🦆 @MarioHewardt
1K Followers 359 Following MSFT, author of Advanced Windows Debugging and Advanced .NET Debugging, work on Sysinternals (/Linux). Opinions are my own. He/him. @[email protected]Joel Eriksson @OwariDa
5K Followers 4K Following Offensive security researcher and entrepreneur -Kernels, browsers and all that jazz- Also: - AI/ML/DL - AR/VR/XR - CTFs (pwn/re/crypto) + Cicada 3301, Boxen etcPhill Moore @phillmoore
8K Followers 3K Following This Week in 4n6 // ThinkDFIR // SANS // CyberCX (DFIR) https://t.co/vLyL2sxTuy I might not know much, but I do know how to Google Tweets are mineSOS Intelligence @SOSIntel
18K Followers 2K Following The Dark Web Monitoring platform for business and enterprise. Managed Threat Intelligence services to detect darkweb & OSINT data-breach and theft. #NAFO IntelNick Carr @ItsReallyNick
38K Followers 4K Following Lead, Cyber Crime Intelligence @Microsoft ☠🏛️ Former Incident Response + Threat Research @Mandiant 🦅 Former Chief Technical Analyst @CISAgov 🛡️John Hammond @_JohnHammond
240K Followers 2K Following Hacker. Cybersecurity Researcher @HuntressLabs || https://t.co/qUeDM3lSCl780th Military Intell.. @780thC
32K Followers 549 Following Official Twitter page of the 780th MI Brigade (Cyber). The Army's only offensive cyberspace operations brigade (following, retweets and links ≠ endorsement).Dmytro Oleksiuk 💥 .. @d_olex
13K Followers 1K Following zero-fucks-given infosec research | contacts: https://t.co/AB3QnrPja0 | 🇺🇦 Ukraine needs your help to kill Ruϟϟian zombies: https://t.co/ihU9OLujfkSeongsu Park @unpacker
11K Followers 1K Following Zscaler APT Research | Formerly Kaspersky GREAT | Threat Intelligence Hustler | Tweets are my own | Keybase: @seongsupark | Mastodon: @[email protected]Boris Larin @oct0xor
17K Followers 518 Following Former console hacker (PS3/PS4). Hunting in the wild 0-days at Kaspersky GReAT. All tweets are my own.Jared Atkinson @jaredcatkinson
10K Followers 2K Following | Chief Strategist @specterops | Host @dcpthepodcast | Ex PowerShell MVP | USAF Vet | FC Bayern Supporter | Language Learner 🇳🇴 🇮🇹 🇧🇷 |ϻг_ϻε @steventseeley
21K Followers 519 Following Hermetic Initiate. Exploring conscience and the nature of reality. I also hack things. @[email protected]Ivan Rouzanov @ivanrouzanov
2K Followers 1K Following Debug Engineer. Windows, drivers and all things kernel mode. I express my views, not my employer's.Josh Reynolds (jmag) @JershMagersh
1K Followers 379 Following Reversing and reversing accessories. Founder @InvokeReversing. Tweets are my own.Duncan Ogilvie 🍍 @mrexodia
5K Followers 235 Following Reverse engineer, creator of @x64dbg and 100+ other projects. Love binary analysis and Windows internals. Dreaming about doing open source full time...Bart @bartblaze
14K Followers 665 Following Threat Intel and more. Opinions are my own, unless retweeted. Open DMs.Itay Cohen🌱 @megabeets_
5K Followers 490 Following Animal liberation activist & Reverse Engineer 🌟 Forbes 30 Under 30 • Maintainer of Cutter and Rizin • Leading Research @ Check Point • I don't eat animals.Pedro Ribeiro @pedrib1337
8K Followers 309 Following Reverse Engineer | Director @ https://t.co/KuU3tiG1Om | Exploit Chef @FlashbackPwndragosr @dragosr
25K Followers 10K Following Stop, Think, Pwn! (see also @[email protected] for alternate)Marc-André Moreau @awakecoding
4K Followers 2K Following Remote desktop protocol expert, OSS contributor and entrepreneur. I love designing products with Rust, C# and PowerShell. Proud to be CTO at DevolutionsBrian Baskin @bbaskin
7K Followers 853 Following Threat researcher, malware analysis, RE, incident response, with some old school forensics and CTFing. Apologetic ginger. These are my personal opinionsPaolo Stagno (VoidSec.. @Void_Sec
5K Followers 1K Following Director of Research @Crowdfense. Windows Vulnerability Researcher and Exploit Developer, ex-@XI_Research@ale_sp_brazil @Splintersfury yea Im also waiting for this one specifically lol
CVE-2019-5786: Analysis & Exploitation of the recently patched Chrome vulnerability chromereleases.googleblog.com/2019/03/stable… security.googleblog.com/2019/03/disclo… github.com/exodusintel/CV… blog.exodusintel.com/2019/03/20/cve… @ExodusIntel
In a new guest blog, #Pwn2Own winner @_manfp details CVE-2024-2887 - a bug he used to exploit both #Chrome and #Edge during the contest on his way to winning Master of Pwn. He breaks down the root cause and shows how he exploited it. Read the details at zerodayinitiative.com/blog/2024/5/2/…
Ever wanted to debug the secure kernel but couldn't figure out how? Me too. It's awful. But I eventually got it working and managed to do some cool stuff, so I documented my solutions here in case it helps anyone else: windows-internals.com/secure-kernel-…
I didn't realize @mmolgtm's POC 2022 presentation had been made public. Cool! "Controlled chaos: Predicting object addresses in Chrome (without breaking a sweat)" powerofcommunity.net/poc2022/ManYue…
🍎 🚨 New variants of Adload adware are going undetected by Apple's anti-malware XProtect despite Apple rolling out last week an unprecedented 74 new rules to XProtect. In the latest investigation by @philofishal, we look at one variant that is almost entirely undetected on…
If you are passionate about operating systems and security, here's your opportunity to be a part of something extraordinary! Join us and let's innovate and shape the future of Secure Enclave together! jobs.apple.com/en-us/details/… Feel free to drop me a DM if you're interested.
@ale_sp_brazil Several of my friends are too, i think we are very curious on the techniques you’d use to recreate the vtables
@ale_sp_brazil Thank you so much for enriching this community with your knowledge and experience 😁
@ale_sp_brazil Awesome! What about the reversing C++ article , was looking forward to that
The LangSec IEEE Security & Privacy workshop is pleased to announce the LangSec Bug of the Year Discovery awards, langsec.org/spw24/bug-of-t…, generously sponsored by @binarly_io . Nominations are accepted till May 20, awards will be presented at the workshop.
Physics Photo Of the Day: Paul Dirac (center) with Director Robert Oppenheimer (left) and Abraham Pais (right), Professor in the School of Mathematics (1950–63), during afternoon tea at the Institute For Advanced Study, November 1947.
I gotta start writing, too. I was motivated when I first came across the MAS series.
I have been slowly writing the next articles: 1. MAS 08: Introduction to MacOS malware analysis. 2. ER 03: macOS/iOS (part 01) 3. MAS 09: Shellcode Analysis 4. ER 04: Browsers or Hypervisors (part 01) 5. RE 05: Hypervisors or Browsers (part 01) MAS 09 will be the last article…
Hello! @jon__reiter is offering, along with a couple others of us, to hold mock interviews in the realm of vuln research & exploitation, fuzzing, reversing, red teaming, etc... If interested, respond here, or sign up to our Discord server and let us know! discord.gg/offbyonesecuri…
Join us as Zachary Henkel tells us about progress that Microsoft Word is making in adopting C++ 20 header units youtube.com/watch?v=H6GQUg…
C# Digest is a free carefully curated weekly newsletter for .NET developers to you become a better engineer.