Kyle Eaton
@0xkyle.bsky.social
📤 133
📥 66
📝 12
phishing, maldocs, threat intel
PDFs have been a constant struggle and I’ve found that this helps. Might be a little biased tho
add a skeleton here at some point
about 1 month ago
1
3
2
I’ll be presenting at
#GrrCON
this year about some weird pdf detection ideas I’ve been messing with. Swing by and tell me your file format
about 2 months ago
0
3
1
People love people who use ms paint.
6 months ago
1
0
0
reposted by
Kyle Eaton
Greg Lesnewich
9 months ago
Idk about y’all but I don’t plan on giving RU ops a free pass into our customer networks just because some ding dong says they aren’t a threat If anything I might just wanna burn them with more prejudice out of spite for both regimes
3
36
12
Check this episode out to hear about image lures and how we can detect them
add a skeleton here at some point
9 months ago
2
5
1
www.virustotal.com/gui/file/f2a...
Also expecting to see indiandefenceforces[.]link soon
add a skeleton here at some point
10 months ago
0
0
0
departmentofdefence[.]link 🧐
10 months ago
1
0
1
Yara rule to match concatenated zip files. I like this one (biased) because of how we are able to avoid matching nested zip files. More info:
x.com/threatinsigh...
#yara
github.com/EmergingThre...
loading . . .
threatresearch/yara/zip_file.yara at master · EmergingThreats/threatresearch
I wanted to call this repo "Nuclear Football Codes". I was outvoted.. - EmergingThreats/threatresearch
https://github.com/EmergingThreats/threatresearch/blob/master/yara/zip_file.yara
about 1 year ago
2
15
8
you reached the end!!
feeds!
log in
