![[email protected]'s banner](https://pbs.twimg.com/profile_banners/35102393/1645901193)
[email protected]
@rpargman
Слава Україні! Most important job: being Dad; I also love to help people deny attackers the opportunity to break and steal all the things. Pronouns: He/him
If you’re looking for a way to make a positive impact saving lives in #Ukraine, consider donating to support World Central Kitchen @WCKitchen - so many families have fled their homes and need food on the run. #StandWithUkraine️ and support heroes on the ground saving lives
When people ask if I’m scared to be in Ukraine, I think of heroes like Chef Anastasiya Krutakova & her team in Kharkiv. Despite being under constant bombings, they continue to cook for families—and even bake bread! 🥖 @WCKitchen must be here to stand alongside 🇺🇦 #ChefsForUkraine
AI + reversing. I use it all quite a lot. Not because I can’t do the work, but because it enables me to work faster when reversing is not my primary job. When the sample fails to run in the sandbox and you need the IOCs during an active engagement. I’ll drop it in a…
Hey @defcongroups … I may have gone a little overboard with the @defcon 33 swag for the DCG Community this year 😬 #RoadToDefcon #DC33 #Defcon33
1337 entries in Cert Central. This represents ~1300* unique code-signing certificates issued to cybercriminals for abuse; a lot of disrupted malware delivery; a lot of wasted money; and a lot of headaches for cybercriminals. Thank you all for your support. *see thread for note
The year is 2021. I suffer from severe social anxiety. I've avoided cons for years. I have my ticket booked for DEF CON, but the day before I'm due to leave, I tell a friend "I can't go, I'm having panic attacks." The next day, I go anyway. I have the most fun I've had in years.…
In terms of offsec, I have significant respect for technical skill, but a truly great practitioner knows to deliver information tactfully, and can carefully "read the room" (and the customer), tweaking the message on the fly to achieve not only the desired impact for the target…
It's official! 😍
Congratulations to @RussianPanda9xx & @polygonben for having talks accepted at #defcon33! Follow these folks and if you're headed to @defcon put it on you to-do list to be in attendance!
Register tomorrow (July 15) at noon PDT for #defcon workshops! Here's the link if you want to come to the evasive malware workshop taught by @d4rksystem and me: Defeating Malware Evasion: Techniques and Countermeasures events.humanitix.com/dc33ws-n258-09p
These devices are also on passenger rail operations! With that said: DO NOT TRY THIS AT HOME. YOU WILL PROBABLY GET SOMEONE HURT.
Perhaps one of the most badass CVE's I've ever seen from @midwestneil 💪😤 cisa.gov/news-events/ic…
Turns out you can just hack any train in the USA and take control over the brakes. This is CVE-2025-1727 and it took me 12 years to get this published. This vulnerability is still not patched. Here's the story:
Perhaps one of the most badass CVE's I've ever seen from @midwestneil 💪😤 cisa.gov/news-events/ic…
Tickets for #DEATHcon in Montreal are on sale now! Book now to secure your place. FYI, Virtual Tickets for round 1 are already Sold Out! eventbrite.ca/e/deathcon-mon… Additional info (like workshops) for the con can be found here : DEATHcon.io Please retweet for reach
Do you want to learn how to red team AI? Of course you do! The amazing Amanda and Gary have recorded their AI red team 101 training for you to enjoy! You can then use our AI red team labs to practice what you learned. aka.ms/AIRT101 youtu.be/DwFVhFdD2fs?si…
While the first batch of online tickets is (almost) sold out, there are still tickets available for most on-site locations. Amsterdam tickets are at half capacity, we'd love to welcome you there. Be quick if you're interested, at this rate they'll be sold out soon.
6 tickets left in round one for #DEATHCon2025 online! Don't worry if you didn't get one, we'll have another round on 9/9 at 09:09 UTC
If you want to sign up, you've got to be quick! Workshops are free (if you have a DEF CON ticket) and you can register at precisely noon PDT on July 15: reddit.com/r/Defcon/comme…
Ever since I was baby I've wanted speak or give a workshop at Defcon.. This year I get to finally make that dream happen. It's on, @rpargman 😎
Most enterprise intrusions that I’ve analyzed in my career have had alerts generated by some security product along the way. The issue/blocker has been figuring out which ones to get in front of a human to realize importance/significance to mobilize action by an org to mitigate
DEATHCon 2025 merch is now available! deathcon.io/merch.html This year, 100% of the proceeds goes straight to @KC7cyber Foundation to provide free, game-based cybersecurity education to everyone! We <3 U KC7
#DEATHCon2025 tickets for online/remote are available now at eventbrite.com/e/deathcon-202… The on-site location tickets will be available soon
Turns out the same ClickFix mitigation of ‘disabling’ the Win+R shortcut (HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer - NoRun DWORD 1) also prevents exploitation of the address bar FileFix technique💡
Did you know TypedPaths artifact can be helpful to detect the FileFix?
First FileFix that I've seen in the wild:
If you love malware AND aliens, this is a double bonus!
Hey malware analysts, reversers, and incident responders! My book Evasive Malware (@nostarch) is on sale for World UFO Day! Check it out if you like malware and/or aliens 🤓