Pinned
Kyle Cucci
@d4rksystem.bsky.social
· Jun 15
evasivemalware.com
People sometimes ask me how to build a malware analysis VM/lab. I cover it in my book Evasive Malware - grab this 40+ page chapter for free here (hosted on my personal blog):
evasivemalware.com/EvasiveMalwa...
Thanks to @nostarchpress.bsky.social & @nostarch.bsky.social for letting me share it! 🤓
evasivemalware.com/EvasiveMalwa...
Thanks to @nostarchpress.bsky.social & @nostarch.bsky.social for letting me share it! 🤓
People sometimes ask me how to build a malware analysis VM/lab. I cover it in my book Evasive Malware - grab this 40+ page chapter for free here (hosted on my personal blog):
evasivemalware.com/EvasiveMalwa...
Thanks to @nostarchpress.bsky.social & @nostarch.bsky.social for letting me share it! 🤓
evasivemalware.com/EvasiveMalwa...
Thanks to @nostarchpress.bsky.social & @nostarch.bsky.social for letting me share it! 🤓
evasivemalware.com
June 15, 2025 at 7:57 PM
People sometimes ask me how to build a malware analysis VM/lab. I cover it in my book Evasive Malware - grab this 40+ page chapter for free here (hosted on my personal blog):
evasivemalware.com/EvasiveMalwa...
Thanks to @nostarchpress.bsky.social & @nostarch.bsky.social for letting me share it! 🤓
evasivemalware.com/EvasiveMalwa...
Thanks to @nostarchpress.bsky.social & @nostarch.bsky.social for letting me share it! 🤓
Reposted by Kyle Cucci
lol, lmao www.crowdstrike.com/en-us/blog/c...
(I actually think this is a good idea and have complained about actor naming for years but both these companies are #1 in “attribution is marketing” so it is very funny to see)
(I actually think this is a good idea and have complained about actor naming for years but both these companies are #1 in “attribution is marketing” so it is very funny to see)
CrowdStrike and Microsoft Unite to Deconflict Cyber Threat Attribution
A CrowdStrike and Microsoft collaboration aims to eliminate ambiguity in adversary naming to bring clarity. Learn more!
www.crowdstrike.com
June 2, 2025 at 5:00 PM
lol, lmao www.crowdstrike.com/en-us/blog/c...
(I actually think this is a good idea and have complained about actor naming for years but both these companies are #1 in “attribution is marketing” so it is very funny to see)
(I actually think this is a good idea and have complained about actor naming for years but both these companies are #1 in “attribution is marketing” so it is very funny to see)
Reposted by Kyle Cucci
We've received so many excellent workshop CFP responses for DEATHCon 2025, and we'll be sending acceptance messages by tomorrow, June 1st! After workshop leaders confirm acceptance, we'll be listing the workshops on deathcon.io/workshops.html over the next few weeks. Thanks all!
a drawing of a skeleton hand reaching out towards another hand .
ALT: a drawing of a skeleton hand reaching out towards another hand .
media.tenor.com
May 31, 2025 at 3:09 PM
We've received so many excellent workshop CFP responses for DEATHCon 2025, and we'll be sending acceptance messages by tomorrow, June 1st! After workshop leaders confirm acceptance, we'll be listing the workshops on deathcon.io/workshops.html over the next few weeks. Thanks all!
Thanks to all the organizers of #Botconf for an amazing conference this year! I got to see many old friends and meet a lot of new ones 😀
And thanks to everyone who attended my talk and workshop on malware evasion techniques 🤓
Until next year!
And thanks to everyone who attended my talk and workshop on malware evasion techniques 🤓
Until next year!
May 29, 2025 at 5:58 PM
Thanks to all the organizers of #Botconf for an amazing conference this year! I got to see many old friends and meet a lot of new ones 😀
And thanks to everyone who attended my talk and workshop on malware evasion techniques 🤓
Until next year!
And thanks to everyone who attended my talk and workshop on malware evasion techniques 🤓
Until next year!
Reposted by Kyle Cucci
🤓 I will be teaching my training at BlackHat USA on Practical GenAI for CTI.
This is a heavy hands-on training where you will learn advanced techniques to build your own AI CTI arsenal for real-world use cases, not theory!
Check the quick overview of the modules 👇
1️⃣ - Intro & Setup
Get your […]
This is a heavy hands-on training where you will learn advanced techniques to build your own AI CTI arsenal for real-world use cases, not theory!
Check the quick overview of the modules 👇
1️⃣ - Intro & Setup
Get your […]
Original post on infosec.exchange
infosec.exchange
May 28, 2025 at 12:16 AM
🤓 I will be teaching my training at BlackHat USA on Practical GenAI for CTI.
This is a heavy hands-on training where you will learn advanced techniques to build your own AI CTI arsenal for real-world use cases, not theory!
Check the quick overview of the modules 👇
1️⃣ - Intro & Setup
Get your […]
This is a heavy hands-on training where you will learn advanced techniques to build your own AI CTI arsenal for real-world use cases, not theory!
Check the quick overview of the modules 👇
1️⃣ - Intro & Setup
Get your […]
Reposted by Kyle Cucci
It's hard to imagine that the audience for "Evasive Malware" is big enough to earn out its advance, but it's much better than I expected.
Last week, after reading a paragraph, I doodled in the margin "What about <x>..." and then looked into it.
22yo vulnerability now reported to MSRC.
Last week, after reading a paragraph, I doodled in the margin "What about <x>..." and then looked into it.
22yo vulnerability now reported to MSRC.
May 18, 2025 at 1:01 PM
It's hard to imagine that the audience for "Evasive Malware" is big enough to earn out its advance, but it's much better than I expected.
Last week, after reading a paragraph, I doodled in the margin "What about <x>..." and then looked into it.
22yo vulnerability now reported to MSRC.
Last week, after reading a paragraph, I doodled in the margin "What about <x>..." and then looked into it.
22yo vulnerability now reported to MSRC.