Mario Samolis

If you're not having fun, you're not learning. There's a pleasure in finding things out.

🎤 BlueHat speaker announcement Mario Samolis and Allie Luhrs, Senior Security Analysts, Microsoft, are taking the stage at BlueHat with a deep dive into one of today’s most persistent supply chain threats. Their research analyzes more than 1,300 npm packages tied to DPRK-linked activity, including FAMOUS CHOLLIMA and the Contagious Interview campaign. What stands out is not just the scale, but how structured these operations are: weekday release cycles, repeated payload reuse, and a sophisticated C2 infrastructure that leverages trusted hosting platforms to evade detection. In this session, they’ll share: ➤What this activity looks like over time ➤How to spot patterns others might miss ➤How their attribution model distinguishes malicious from benign packages with a strong margin #BlueHat

@lazarusholic @runpanther

"Inside DPRK's npm malware factory: 108 packages, 261 versions, and a 31-day campaign wave" published by @runpanther. #BeaverTail, #NPM, #DPRK, #CTI panther.com/blog/inside-dp…

@marryevan999 Nano

Nano Banana + MakeUGC + Veo3 = AI content Factory This agent pumps out hundreds of ads daily — fully automated. - No $300 creators - No $10K/month agency fees - No products Comment “Nano” and I'll send it for FREE! (must be following)

@Zephyr_hg NEWS

I never run out of content to post anymore. Built an automation that monitors 50+ news sources, scores articles for relevance, and writes social posts automatically. It finds trending topics in my niche before they explode everywhere else. Saves me 15-20 hours monthly and keeps me ahead of every trend. Comment "NEWS" and I'll DM it to you (must be following)

@RussianPanda9xx Looks like a modern version of the "American Gothic" painting

Can anyone guess what crypter is it?

If you are a Student, open this it's important 👇

@sapirxfed Got that look of determination going on.

Putting on my battle face. I'm going to debug lsass tonight! 😈

@xtremepentest #

Just finished creating this free amazing Linux bash cheatsheet and wanted to share it with you all: To get it, • Like • reply #⃣ and I will DM it to you. Make sure to retweet so that others can benefit as well.

You're under no obligation to remain the same person you were a year ago, a month ago, or even a day ago. You are here to create yourself, continuously.

Defense Evasion Series Part 1 AMSI Bypass #redteam #pentest #infosec dazzyddos.github.io/posts/AMSI-Byp…

@SecShoggoth I'm sure it is one of the boxes full of random cables/cords that we all have just sitting in closet somewhere.

Why is it I can never find a USB-C cord when I need one, but when I'm looking for a different USB cord I find 10 of them.

@SecShoggoth @BSidesROC I feel that way every time I go back through a case. It seems like there is always more information to find or understand no matter how much analysis you already did.

Digging into the history of another forensics case for my @BSidesROC presentation...feel like an archeologist. Am I the Indiana Jones of the #DFIR world? (I'm not, but am just enjoying the thought)

@DFIRmadness @Ell_o_Punk Completely agree here. The trick is to not let your stress overpower your ability to perform. Just be yourself and your will do fine.

@Ell_o_Punk @Ell_o_Punk you got this. The stress etc. means you care. And I hate to break it to you- impostor syndrome never goes away for the humble folks. Congratulations! You’re human after all. You’re gonna do great.

Should I be posting this publicly, probably not. But I'm feeling so done and stressed. So ya, job interview this afternoon. It's a surreal feeling. But I have a hell of a lot of 4 legged little mouths to feed. Impostor syndrome feelings Activate!!

@Ell_o_Punk Congratulations. The first one is always the best. Great feeling of accomplishment.

I popped my first windows box!!!!

@SecShoggoth @tazwake Not sure if they still do it, but they have a virtual queue that opens up at 9am and if your quick enough you can snag a spot. I would have the queue all ready setup with my family and once 9am hit I would queue up immediately.

@tazwake Hopefully you were able to go on Rise of the Resistance. Once of the best rides I've ever been on.

The Millennium Falcon.

@DFIRmadness As far as I am aware, Microsoft pushed out a fix for it earlier this month.

Hey #infosec someone recently tweeted that defender won’t scan files if they are named something… like dump something.exe or some such… now I can’t find it. Anyone know what it was?

seeing some ssh usernames that attempt to exploit #log4shell #log4j

@SecShoggoth Yes please

Quick question to the #dfir community. A few months (yes months) ago I put up an #Ubuntu #honeypot with apache remote code execution...and forgot about it until now. Yes, it is pwned. Anyone want the disk and memory from it to play with?

@DFIRmadness @SecShoggoth I'm more of a ham person

Alright, one must ask @SecShoggoth - what baking have you gotten into this year?