9687
Group for Malware Analysts. Pinned message with resources and rules: https://t.me/MalwareResearch/38033
User Rashedul Islam has 1/3 warnings; be careful!
Reason:
no advertising
Hello Noy, welcome to the Malware Research group! Please read the pinned message before you post!
Читать полностью…
I agree, but I've also seen malware which was done by people who actually understand what they're doing.
Читать полностью…
lmao cause its mostly chinese apt's, outsourcing work to junior pentesters
Читать полностью…
Nice read. Assuming from good readable code that it comes from a LLM is quite... weird to me, tho.
Читать полностью…
7 LLM Projects to Boost Your Machine Learning Portfolio - MachineLearningMastery.com
https://machinelearningmastery.com/7-llm-projects-to-boost-your-machine-learning-portfolio/
well shoot that is all the info i have on this sample, its ok, i appreciate the help from everyone!
Читать полностью…
Hello Nhat, welcome to the Malware Research group! Please read the pinned message before you post!
Читать полностью…
please state your question clearly, and also, its relevancy to malware research?
Читать полностью…
User Secret has 2/3 warnings; be careful!
Reason:
English only
If Im taking the time to do this, might as well get meaningful results
Читать полностью…
Hello ., welcome to the Malware Research group! Please read the pinned message before you post!
Читать полностью…
Hey Guy's If u wana learn cyber security and red teaming then come
Читать полностью…
Hello @khangkhang24, welcome to the Malware Research group! Please read the pinned message before you post!
Читать полностью…
Sure. Unfortunately, AFAIU there's no way to objectively identify LLM-generated code. I think I saw a paper on that last year or early '24. So, I can only make a hypothesis with the info I have, which I did. I could be wrong, no doubt.
Читать полностью…
i hardly imagine some senior appsec, wasting his time writing simple implants
Читать полностью…
In my experience, when I've looked at malware I don't see well-written code. Almost never, tbh. The code might be simple but it doesn't have certain characteristics.
But LLMs generate good code with good control flow, comments, variable names, etc. So, that's the connection. It's a hypothesis
User Mohd has 1/3 warnings; be careful!
Reason:
stay on topi
Blog post alert!
This one is about the Emansrepo infostealer. The primary focus is to extract the Python code from the PyInstaller-based sample and then deobfuscate it to reveal the actual malware code. Emansrepo Python code is so clean, easy to follow, with great variable names and function names, that I believe the developer may have used an LLM to write it.
People getting into malware analysis can use this information to learn how to handle PyInstaller-packaged malware.
Blog link: https://nikhilh-20.github.io/blog/emansrepo_deobfuscation/
Has anyone know about honeypot enterprise version?
Читать полностью…
Everybody knows Metasploit. Theres are lot of resources in the internet if you search.
Читать полностью…
Yes, no i am saying what you said was very formal.
"Patience is a virtue " my grandpa used to say this to me
The survey will run for a while, patience is a virtue
Читать полностью…
User Lucifer has 1/3 warnings; be careful!
Reason:
no advertising and stay on topic
fdee2e34212170af59a95701317f220e9bdedfd8ee579bc485e0534410da42e7
2600eb7673dddacda0e780bf3b163b0b89b41f9925eebbd2a2b3dfa234bc1a22