Binni Shah @binitamshah

Linux Evangelist, Malwares , Kernel Dev , Security Enthusiast , liberation, sarcasm , living on edge . Jain & philanthropist . binitamshah at protonmail com

 0's & 1's of capacitor
Joined March 2009
  • Tweets 32,132
  • Following 206
  • Followers 110,115
4,153 Photos and videos
Writing a simple rootkit for Linux : 0x00sec.org/t/writing-a-simp…

Writing a simple rootkit for linux

WRITING A SIMPLE ROOTKIT FOR LINUX In this article, I’ll describe how to write a simple rootkit for linux. However, to understand this article, you must know how to write linux kernel modules. If you...

0x00sec.org
5
105
1
364
Binni Shah retweeted
Azeria
 @Fox0x01
May 24
Interesting nominations for this year’s European Cybersecurity Blogger Awards. @hasherezade was nominated for “The Influencer - Person Most Impactful on Social Media” I would’ve put her into the “Best Technical Blog” category but alas, vote for her! 🤓 docs.google.com/forms/d/e/1F…

European Cybersecurity Blogger Awards - VOTE FOR YOUR WINNERS

The ninth annual European Cybersecurity Blogger Awards sponsored by Qualys and powered by Eskenzi PR, will be bestowed upon the best cybersecurity bloggers, podcasters, Tweeters, Instagrammers and...

docs.google.com
8
18
3
147
We often teach people how they should treat us by "tolerating"abuses & despicable behaviours.What we tolerate or abide - keeps in continuation. Define boundaries of what's ok w/you n what's not, say it clear & loud.If you can't stand for ur own self respect nobody on earth will
3
7
1
49
Simply love this note , so much positivity is there 💟
2
6
74
Binni Shah retweeted
hasherezade @hasherezade
May 10
New release: #mal_unpack (0.9.4): github.com/hasherezade/mal_u… + the (experimental) companion driver (0.1.1.17): github.com/hasherezade/mal_u… - check it out & share your opinions!
11
129
1
394
Learning Linux kernel exploitation - Part 2 - CVE-2022-0847 : 0x434b.dev/learning-linux-ke… Part 1 : 0x434b.dev/learning-linux-ke… credits @0xricksanchez

Learning Linux kernel exploitation - Part 2 - CVE-2022-0847

Continuing to walk down Linux Kernel exploitation lane. This time around with an unanticipated topic: DirtyPipe as it actually nicely fits the series as an example.

0x434b.dev
29
1
119
Yours Truly, Signed AV Driver : Weaponizing An Antivirus Driver : cyber.aon.com/aon_cyber_labs… Details of Cuba Ransomware : mandiant.com/resources/unc25… How DoppelPaymer Hunts and Kills Windows Processes : crowdstrike.com/blog/how-dop…

How DopplePaymer Hunts & Kills Windows Processes | CrowdStrike

In 2019, our intelligence team reported ProcessHacker being hijacked to kill a list of targeted processes. Explore more on DoppelPaymer implementation here.

crowdstrike.com
18
50
Browser In The Browser (BITB) Attack : mrd0x.com/browser-in-the-bro… credits @mrd0x
1
9
34
GIF
Demystifying iOS Code Signature - Taking apart a code signature and learning to reconstruct it : medium.com/csit-tech-blog/de…

Demystifying iOS Code Signature

Taking apart a code signature and learning to reconstruct it

medium.com
31
115
Binni Shah retweeted
waldoirc @waldoirc
Apr 23
Here's my post on my YouMayPasser POC I released, as promised. Thanks to both @_ForrestOrr and @hasherezade for making such great tools, you both rule. I say "easiest way" but it was anything but easy I assure you. arashparsa.com/bypassing-pes…

Bypassing PESieve and Moneta (The "easy" way....?)

Table of Contents Introduction Moneta and the first IOC Moneta and the final IOC The PeSieve Bypass Conclusion TLDR; POC is here: https://github.com/waldo-irc/YouMayPasser/.  Usage isn't super...

arashparsa.com
15
159
3
360
Binni Shah retweeted
C:\hristian Mehlmauer @firefart
Apr 15
Proud to release a new tool called STUNNER to test TURN servers (mostly used in WebRTC). It can open a local socks server and relay all traffic over vuln devices into the internal network github.com/firefart/stunner Also found some vulns in Cisco Expressway: firefart.at/post/multiple_vu…

Multiple Vulnerabilities in Cisco Expressway

Multiple Vulnerabilities in Cisco Expressway

firefart.at
2
42
104
universal-android-debloater : Cross-platform GUI written in Rust using ADB to debloat non-rooted android devices. Improve your privacy, the security and battery life of your device : github.com/0x192/universal-a…
2
27
1
118
Modern x64 Assembly : invidious.fdn.fr/playlist?list=PL… (16 video's) Linux x64 Assembly : invidious.fdn.fr/playlist?list=PL… (6 video's)

Linux x64 Assembly

youtube.com
61
173
Fuzzing ClamAV with real malware samples from @vxunderground : mmmds.pl/clamav/
2
19
Samsung Galaxy ( < ver 4.5.36.4) - Any App Can Install Any App In The Galaxy App Store : labs.f-secure.com/advisories… //CVE-2022-28776* 2) Samsung Flow : Any app can read external storage : labs.f-secure.com/advisories… //CVE-2022-28775* *credits @Yogehi
7
1
23
Binni Shah retweeted
sagitz @sagitz_
Apr 28
Today Wiz Research (@shirtamari, @nirohfeld, @ronenshh and myself) published details on #ExtraReplica, a severe vulnerability that allowed anyone to access the databases of other #Azure customers. Here’s how we did it: 🧵 (1/n) wiz.io/blog/wiz-research-dis…

Wiz Research discovers "ExtraReplica"— a cross-account database vulnerability in Azure PostgreSQL

Tenant isolation is a fundamental premise of the cloud. Organizations trust that the cloud services they use, especially high value assets such as databases, are isolated from other customers. Wiz...

wiz.io
5
114
18
265
Show this thread
Malware Noob2Ninja Course : invidious.fdn.fr/playlist?list=PL… (13 video's) Malware Analysis Bootcamp : invidious.fdn.fr/playlist?list=PL… (16 video's)

Malware Analysis

Malware Analysis Tutorial Playlist

youtube.com
2
95
293
Binni Shah retweeted
Binni Shah @binitamshah
18 Jan 2020
DevOps Questions & Exercises ( incl. Linux, Jenkins, AWS, SRE, Prometheus, Docker, Python, Ansible, Git, Kubernetes, Terraform, OpenStack, SQL, NoSQL, Azure, GCP, DNS, Elastic, Network, Virtualization - Overall 834 questions): github.com/bregman-arie/devo…

GitHub - bregman-arie/devops-exercises: Linux, Jenkins, AWS, SRE, Prometheus, Docker, Python,...

Linux, Jenkins, AWS, SRE, Prometheus, Docker, Python, Ansible, Git, Kubernetes, Terraform, OpenStack, SQL, NoSQL, Azure, GCP, DNS, Elastic, Network, Virtualization. DevOps Interview Questions - Git...

github.com
193
2
498
Writing a simple rootkit for Linux : 0x00sec.org/t/writing-a-simp…

Writing a simple rootkit for linux

WRITING A SIMPLE ROOTKIT FOR LINUX In this article, I’ll describe how to write a simple rootkit for linux. However, to understand this article, you must know how to write linux kernel modules. If you...

0x00sec.org
5
105
1
364
awesome-malware-development : Organized list of my malware development resources : github.com/rootkit-io/awesom…

GitHub - rootkit-io/awesome-malware-development: Organized list of my malware development resources

Organized list of my malware development resources - GitHub - rootkit-io/awesome-malware-development: Organized list of my malware development resources

github.com
2
81
1
189
How SHA-256 Works Step-by-Step : blog.boot.dev/cryptography/h… credits @bootdotdev

How SHA-256 Works Step-By-Step

SHA-2 (Secure Hash Algorithm 2), of which SHA-256 is a part, is one of the most popular hash algorithms around. A cryptographic hash, also often referred to as a “digest”, “fingerprint” or “signatu...

blog.boot.dev
2
39
1
89
Load more