Handler's Diary
- Qiling: A true instrumentable binary emulation framework
- Sigma rules! The generic signature format for SIEM systems.
- Not so FastCGI!
- Annotating Golang binaries with Cutter and Jupyter
- Introduction to analysing Go binaries
- Binary Analysis with Jupyter and Radare2
- Analysing meterpreter payload with Ghidra
- A Dive into malicious Docker Containers
- CoinMiners searching for hosts
- Moby the Shark
- Back to the 90's: FragmentSmack
- Hunting SSL/TLS clients using JA3
- Well, Hello Again Peppa!
- Crypto community target of MacOS malware
- From Microtik with Love
- Automated twitter loot collection
- Binary analysis with Radare2
- Track naughty and nice binaries with Google Santa
- Anatomy of a Redis mining worm
- Reversed C2 traffic from China
- Another approach to webapplication fingerprinting
