Barberousse · @barberousse_bin
113 followers · 25 posts · Server todon.eu@lorenzofb
My favorite #yara rules are the ones based on characteristics in the structure of files.
Matching strings and bits of code is good, but a rule that parses PE Resources, Exports, or ZIP file records is so satisfying when it works (and useful for more experimental #ThreatHunting)
FOSSlife · @FOSSlife
864 followers · 1026 posts · Server mastodon.fosslife.org
IBM contributes Kestrel programming language to Open Cybersecurity Alliance https://buff.ly/3Afryb0 #Kestrel #ProgrammingLanguage #security #OpenSource #FOSS #ThreatHunting #OCA #cybersecurity #IBM
#IBM #cybersecurity #OCA #ThreatHunting #foss #opensource #security #ProgrammingLanguage #Kestrel