View profile

Security Highlight - Issue #10

Thomas Roccia
Thomas Roccia
“Don’t judge each day by the harvest you reap but by the seeds that you plant.” -Robert Louis Stevenson

Hello Friend
🔥Welcome to this number 10 edition of my newsletter!
As always, several things happened over the past weeks in the infosec world.
I am glad to announce that I will be presenting the Unprotect Project at the OWASP chapter in Sydney at the end of April. The Unprotect Project is dedicated to malware evasion, this talk will be an opportunity to announce some of the update of the project. It will be online and probably recorded so if you can’t attend you will still be able to watch the talk later.
A new technique has been added to the database this week, talking about anti UPX techniques. Anti-UPX Unpacking - Unprotect Project
This week, I also published a guest blog in the new Threat Intelligence community site created by Feedly. This blog is discussing about the 5 critical components you should add in your Threat Intel Briefing.
I also published a Jupyter Notebook using the MSTICpy library to extract IOCs from threat report. The code can be easily adapted and reused. You can also play with it in your browser here or here. Below is a gif that demonstrate how to use it.
As it is Friday, I thought it might be interesting to share a small stuff I drawn! Let me know what you think, I will try to share more stuffs like that in this newsletter. :)
That’s it! Enjoy the best reading of the week as well as the best meme! :)
Thomas
More Resources
  • If you are looking for security tips, I am regularly publishing infographics and if you want to support my work, you can also consider ordering goods for your office => TomFrog Shop | Redbubble
  • If you want to learn more about Reverse Engineering I recommend reading my tips to get started.
  • You can follow me on Twitter and LinkedIn
Top Posts of the Week
Tracking cyber activity in Eastern Europe
KA-SAT Network cyber attack overview | Viasat
Operation Dragon Castling: APT group targeting betting companies - Avast Threat Labs
Not So Lazarus: Mapping DPRK Cyber Threat Groups to Government Organizations | Mandiant
Meme of the Week
Via @nagasainikhil
Via @nagasainikhil
Did you enjoy this issue? Yes No
Thomas Roccia
Thomas Roccia @fr0gger_

An occasional newsletter where you will get useful cybersecurity content for your career and your daily work. 🤟

In order to unsubscribe, click here.
If you were forwarded this newsletter and you like it, you can subscribe here.
Created with Revue by Twitter.