Undev Ninja

Blog post detailing Sysmon's file delete event internals and escalation to kernel code execution has been published here: undev.ninja/sysmon-interna…. PoC code uploaded here: github.com/NtRaiseHardErr…. Affected versions: v11.0 and above.

Over the last week or so, we've been trying a new regime/approach over in discord[.]gg/onlymalware In 3 weeks, @Sad0pR will be gracing us with his precense present the "best thing since sliced bread" so @0x00dtm proclaims.. Seems like it's picking up, so feel free to join ;^)

Hiring for a Security Researcher Role. The ideal candidate should have a strong understanding of Windows Internals & Api development, strong programming skills C#/C/C++ & Adversary Emulation. Interested candidates can reach out by DM.

I have uploaded the recording to YouTube of the Conti Source Code analysis, exploring the encryptor code base. We cover various functionality implementation and oppurtunities for improvement/detection. youtu.be/SGbhqwXB-GU

Join me next week at Saturday 2PM UTC as we explore the recent Banshee MacOS stealer source code leak😎 discord.gg/aAAYwVes?event…

Join me tomorrow at 2PM UTC in OnlyMalware as part of a new series where I look to explore leaked malware code bases. This week we will start with the infamous Conti source code leak. I'm looking forward to seeing y'all there! discord.gg/onlymalware?ev…

This is the contest winner :) Ships with a 0day for Crafty controller. Huge thanks to @_chebuya. Today I'm announcing Black Mass Research Group. Our goal is to make interesting malware for public study. Please enjoy our first project! github.com/blackmassgroup…

I'm now looking for job in Threat Intelligence field, If possible remote or Japan. I am currently interested in threats in the Far East, and I have the ability to focus on places that others do not see. If you are interested, contact me.

I'm announcing a small contest I'm managing. The challenge is to write the most sophisticated, elegant JVM malware you can. What this is NOT: - An obfuscator contest - a VM design contest Criteria: Virality/infectiousness Stealth Flexibility

We have extremely exciting news. Our second book will be released next weekend. Black Mass Volume II. Digital copies are free on vx-underground. Physical copies will be available for purchase on Amazon.

another amazing talk by @onlymalware was given in his OnlyMalware (discord.gg/onlymalware) discord server. check it out. youtube.com/watch?v=AT-9n6…

vx-underground will be hosting a virtual conference. This virtual conference will charge $25 to view. We will NOT profit from this virtual conference in any manner. All proceeds will be going to charity. We are issuing a call of papers and presenters. Date: November 3rd, 2023.

Our malware database is still not quite ready for launch. However, we have open-sourced the malware database we made for issue tracking, individuals who want to contribute, or for people who want their own basic malware database. Check it out here: github.com/blackmassgroup…

vx-underground member @LaurieWired will be present at @BSidesSeattle to discuss the 'GodFather' Android banking trojan. She will discuss accessibility service abuse & HTML overlays used in Android malware. Please attend the event and ask for the password bsidesseattle.com

We have some open REMOTE positions for vuln researchers + exploit devs. iOS/Android specific. Can be browser devs. You can be international. US Company + US Pay. DM me for details.

Before the new vx-underground malware exchange site goes live we need to ensure the security of the site If you're a hacker and would like the opportunity to try to pwn our malware database, let us know. If you successfully pwn us, we can't offer much, but we can give free swag

A blog post detailing a race condition I found in Acronis True Image that allows users to run arbitrary binaries as root. vkas-afk.github.io/26_february_20…

We are happy to announce we are hosting our first ever Malware Research Contest! Sponsored by our friends at @SentinelOne * Must be novel research * Applicants can only be from the United States due to anti-gambling and money laundering laws * First place is a new Macbook Pro ♥️

I am looking for remote security research position, my dms are open

From our headquarters underneath the Vatican, happy Halloween! Today we release the first edition of our new publication Black Mass. Special thanks to our Editor in Chief @h313n_0f_t0r for all of her hard work. papers.vx-underground.org/papers/Other/V…