Kyle Eaton
@0xkyle.bsky.social
📤 134
📥 68
📝 13
phishing, maldocs, threat intel
Dude, Stephen King loves the word “pallid.”
27 days ago
0
1
0
PDFs have been a constant struggle and I’ve found that this helps. Might be a little biased tho
add a skeleton here at some point
3 months ago
1
3
2
I’ll be presenting at
#GrrCON
this year about some weird pdf detection ideas I’ve been messing with. Swing by and tell me your file format
4 months ago
0
3
1
People love people who use ms paint.
7 months ago
1
0
0
reposted by
Kyle Eaton
Greg Lesnewich
11 months ago
Idk about y’all but I don’t plan on giving RU ops a free pass into our customer networks just because some ding dong says they aren’t a threat If anything I might just wanna burn them with more prejudice out of spite for both regimes
3
36
12
Check this episode out to hear about image lures and how we can detect them
add a skeleton here at some point
11 months ago
2
4
1
www.virustotal.com/gui/file/f2a...
Also expecting to see indiandefenceforces[.]link soon
add a skeleton here at some point
11 months ago
0
0
0
departmentofdefence[.]link 🧐
12 months ago
1
0
1
Yara rule to match concatenated zip files. I like this one (biased) because of how we are able to avoid matching nested zip files. More info:
x.com/threatinsigh...
#yara
github.com/EmergingThre...
loading . . .
threatresearch/yara/zip_file.yara at master · EmergingThreats/threatresearch
I wanted to call this repo "Nuclear Football Codes". I was outvoted.. - EmergingThreats/threatresearch
https://github.com/EmergingThreats/threatresearch/blob/master/yara/zip_file.yara
about 1 year ago
2
14
8
you reached the end!!
feeds!
log in
