January 20, 2025
January 20, 2025
Weekend (2025) papers:
— Meysam (@R00tkitSMM) January 19, 2025
QMSan: Efficiently Detecting Uninitialized Memory Errors During Fuzzinghttps://t.co/riwZuOMqFi
Invivo Fuzzing by Amplifying Actual Executions https://t.co/16VBtjeNms
DUMPLING: Fine-grained Differential
JavaScript Engine Fuzzinghttps://t.co/6Q2JSeXZAN
Introducing DFIR Labs: A 24-challenge series by internationally acclaimed CTF authors, tailored for professionals, researchers and students. Master DFIR, Malware Analysis and Threat Hunting through challenges designed to push your expertise to new heightshttps://t.co/6lgoxMDt8f pic.twitter.com/6hDBbmUlKf
— Nithin Chenthur Prabhu (@Azr43lKn1ght) January 19, 2025
⚠️ Developers, please be careful when installing Homebrew.
— Ryan Chenkie (@ryanchenkie) January 18, 2025
Google is serving sponsored links to a Homebrew site clone that has a cURL command to malware. The URL for this site is one letter different than the official site. pic.twitter.com/TTpWRfqGWo
fasterthanlime 🌌: "oh my god. OH my god. https://obsproject.com/blo…" - Hachyderm.io
Attached: 1 image oh my god. OH my god. https://obsproject.com/blog/obs-studio-hybrid-mp4
Anyway what are you guys up to today https://t.co/LkUFskzAio
— Lolo (@LolOverruled) January 19, 2025
I assumed people would be upset but did not anticipate them firebombing a politician’s office lol pic.twitter.com/0bkIim3I47
— Ken Klippenstein (@kenklippenstein) January 19, 2025
I've published a new story regarding the various ways DrugHub a #DarkWeb Marketplace has failed.https://t.co/LmtBBAAHft
— Evil Rabbit Security Inc. (@EvilRabbitSec) January 18, 2025
"We've reduced our support load by 99.9% using AI"
— Gergely Orosz (@GergelyOrosz) January 19, 2025
In reality... your customer can't get ANY support now
I'm getting tired of these terrible AI bot rollouts...
Example: pic.twitter.com/QdAUzbDXA9
This is a reminder to everyone that your malware payload does not need to be ultra-1337 for it to be effective or evasive.
— vx-underground (@vxunderground) January 20, 2025
In a bit of irony, the more sophisticated you try to make your malware be, more the IOCs you're introducing into your code base.
The goal is to write… pic.twitter.com/xaOVY88h3a
Pouring one out for the homies who had weeks of shit posts lined up memeing the death of TikTok pic.twitter.com/vxvXko348x
— vx-underground (@vxunderground) January 19, 2025
Tik Tok boosted negative videos of US soldiers disparaging our military, part of the reason for the bipartisan ban. Now we have a bizarre US military migration to another CCP platform. The DoD's social media policy has been disjointed and confusing, failing to differentiate… https://t.co/jzf1M0JYv1
— Owen West (@OwenWest91) January 19, 2025
HUMINT Research: Full article: Source Handler perceptions of the interviewing processes employed with informants https://t.co/ND6IvnRpdY
— Covert Intel and Operations (@covert_intel) January 19, 2025
i’d recommend reading the “monolith” paper on real-time recommendation systems by bytedance engineers if you want to understand how the algorithm works from the horses mouth.
— arman (@armankhon) January 19, 2025
paper: https://t.co/ykVedMbu7r
— arman (@armankhon) January 19, 2025
GitHub - bytedance/monolith: A Lightweight Recommendation System
A Lightweight Recommendation System. Contribute to bytedance/monolith development by creating an account on GitHub.
HUMINT Research: FIREPLACES And Informant Motivation - what motivates an agent / informant to cooperate with intelligence or law enforcement agencies?(and no, it’s not as simple as M.I.C.E.) https://t.co/YqvscvGwzt
— Covert Intel and Operations (@covert_intel) January 19, 2025
FIREPLACES And Informant Motivation
A new framework has been devised to help informant handlers better identify motivations. [Updated May 2024]
DPRK puts out one of the cleanest malicious bash scripts youll ever see. readability+++
— StrikeReady Labs (@StrikeReadyLabs) January 17, 2025
7a45e4614662081bf300c897b5e4de212e41bf8ed53762a5e4d455eaee983a6a pic.twitter.com/UCRbSgbgC7
Apparently XHS’s translation function used AI and is so seriously good that it’s able to translate emojis and Chinese internet memes. So basically RedNote was able to not only implement translation in a few days but also did a brilliant job at it.
— Beyond reasonable doubt (@BN9195) January 19, 2025
More than 100 audit reports (🤯) of Solana projects conducted by @osec_io are available for reading here👇https://t.co/tKVBJ4BgVJ
— InfectedCrypto (@InfectedCrypto) January 19, 2025
You'll also find ~20 Cosmos reports, and some other chains
Don't miss that opportunity to bookmark it, you'll probably find it useful some day 🫡
Wow, this is huge. I just tried it myself with a foreign phone number (you can apparently choose any country, see screenshot) and it's true: you can now join Douyin - the Chinese version of TikTok - as an international user.
— Arnaud Bertrand (@RnaudBertrand) January 19, 2025
Which means the Great Firewall is coming down in the… https://t.co/RDqSvlWBHs pic.twitter.com/8DVAjKtUfh