-
#### ...that alone 'could provide a false sense of security,' NSA warns in this handy free guide for orgs
BlackLotus, the malware capable of bypassing Secure Boot protections and compromising Windo…
-
#### ...that alone 'could provide a false sense of security,' NSA warns in this handy free guide for orgs
BlackLotus, the malware capable of bypassing Secure Boot protections and compromising Windo…
-
# 每日安全资讯(2023-06-11)
- SecWiki News
- [ ] [SecWiki News 2023-06-10 Review](http://www.sec-wiki.com/?2023-06-10)
- Twitter @Nicolas Krassas
- [ ] [PythonMemoryModule - Pure-Python Implementation O…
-
# 每日安全资讯(2023-07-16)
- unSafe.sh - 不安全
- [ ] [SMMdump: memory dump at ring -2](https://buaq.net/go-172121.html)
- [ ] [Hidden - Windows Driver With Usermode Interface Which Can Hide Processes, Fi…
-
Microsoft has shared details on how threat hunters can check their systems for BlackLotus UEFI bootkit infections.
The post [Microsoft Shares Resources for BlackLotus UEFI Bootkit Hunting](https://…
-
I would like to add a command that lists out the TTP names according to computers.
We only know the technique IDs so need to lookup the names from https://github.com/mitre/cti/blob/master/enterpris…
-
Microsoft has shared guidance to help organizations check if hackers targeted or compromised machines with the BlackLotus UEFI bootkit by exploiting the CVE-2022-21894 vulnerability. \[...\]
-
So i've gotten pretty close to getting windows 10 arm to boot. But for some reason after selecting the boot device it wont no longer detect the keyboard, when the press any key to continue prompt arri…
-
the bootkit loads the driver into memory itself, the driver is unsigned and never touches disk as plaintext. (3 of the samples listed were uploaded to VT by me after dumping and decrypting them from t…
-
Hi, I tried to run EFI guard on a USB stick and it did not boot, then I tried to run it on a FAT32 formatted partition on one of my drives separate from my windows boot drive and it didn't boot.
OS …