Margin is going to Berlin! 🇩🇪 Come take our Practical Program Analysis Class 🧑‍🎓💻🏆at @offensive_con with the amazing team at @vector35 offensivecon.org/trainings/2…

The iSoon leaks suggest that Qihoo 360 provides customer PII to exploit developers and cyber mercenaries to enable Chinese intelligence work.

🏆 Tianfu Cup 🏆confirmed as Chinese Ministry of Public Security exploit hoarding front, and more 🚨 #isoon #tianfucup New blog post by @__winn on the iSoon leaks margin.re/2024/02/same-same-…

To quote @daveaitel: ‘It's only hard to find vulnerabilities if you look for hard vulnerabilities. You should look for easy ones.’ 🔍🦗

The uninitiated reacting to Linux mailing list exchanges, for the first time realizing that one of the most complex things ever built by human hands that drives their phone, entertainment, car, banking, medical care, food & retail, power, & water exists because one man consistently marshaled that level of controlled anger over obscure kernel functions every day for more than 33 years in order to herd a community of other folks who just felt like doing something with their compute. & this was a relatively mild example of the sustaining anger required. Now realize this is the underpinning dynamic that shapes a warfighting domain; as countless devs, planners, & operators mine the gaps the sustaining anger could not reach to weaponize weird machines in order to steal secrets, break things, & kill people.

PROGRAM ANALYSIS FOR VULNERABILITY DISCOVERY by @Calaquendi44 and @psifertex offensivecon.org/trainings/2…

Thrilled that my alma mater @rpi has claimed #1 in the latest Cyber Power Rankings! This achievement reflects their exceptional skills & dedication to cybersecurity. I'm sure my fellow cybersec alums @daveaitel @RCS @markrussinovich @perribus are proud too news.rpi.edu/approach/2023/1…

Attention @RPI students and friends. This Friday, 4pm, Sage 4101: Boston Cybernetic's @0xjeremy will make a prized appearance on campus to host a seminar on hacking techniques taught by @RPISEC and how to get involved with the club

The proliferation of offensive cyber capabilities poses risks to national security and human rights. To better understand this ecosystem we asked @__winn @Calaquendi44 @ILDannyMoore @Bing_Chris @ollieatnowhere @mruiz12 @CSI_Jen for their insights. atlanticcouncil.org/content-…

Great writeup about reverse engineering MikroTik router by @hgarrereyn and @__comedian Blog post: margin.re/2022/06/pulling-mi… Slides (RECon): margin.re/content/files/2022… #iot #embedded #mikrotik #reverseengineering #cybsersecurity

Interested in learning more about offensive cyber capabilities market place and how these vendors tend to operate? Check out our blogpost featuring @__winn, @Calaquendi44, @ILDannyMoore, @Bing_Chris, @ollieatnowhere, @mruiz12, and @CSI_Jen here: atlanticcouncil.org/content-…

🚨 Our last training of the year! 🚨 🥷 Topic: Program Analysis for Vulnerability Research 🌎 Location: Remote ⏰Duration: 5-days For more details check out our website at: margin.re/training/ Sign up with @vector35 at: shop.binary.ninja/products/p…

Margin is proud to sponsor some of the best CTF players from around the world. Come say hi at our #MidnightSun23 table👋

💪 Security is about building as well as breaking! 🍎The next speaker, @sharvil will teach us about building next-gen security tools, with a focus on macOS at #MidnightSun23 ➡️conf.midnightsunctf.com/spea…

When is a Linux kernel commit from Linus Torvalds not really from Linus Torvalds 💻 We use data ACROSS GitHub projects and AI generated topics to build a better Entity Resolution (ER) and answer this question and more. margin.re/2023/06/entity-res…

🚨🚨🚨🚨🚨🚨🚨🚨🚨🚨🚨🚨🚨🚨🚨🚨🚨🚨🚨 ATTENTION!!! NOMINATIONS CLOSE THIS FRIDAY 🚨🚨🚨🚨🚨🚨🚨🚨🚨🚨🚨🚨🚨🚨🚨🚨🚨🚨🚨 Did you see some amazing research in offensive security this past year? Does it deserve a horse shaped award? Nominate them below 👇 pwnies.com/nominations/

The turtles wifi hacking challenges now have a built-in wireshark dissector on the web. Great companion to linux on v86 + hwsim + scapy. Pretty much a full browser-based WiFi lab Play along here: turtles.supernetworks.org/ma… #ctf #ieee80211 #wifi #hacking #pi4 #contest

🚨NEW: The Solution to Cyber Mercenaries Is Not Export Control 🚨 My first ever op-ed in @lawfareblog is out! Wanna know more about NSO, the cyber mercenary landscape, what export control even is, and why it’s not enough? Read on 🧵/ lawfareblog.com/export-contr…

Create a Safe Browsing API to scan for malicious apps! In a guest blogpost, our researcher @DaveManouchehri walks through how to use @CorelliumHQ and Frida to make our own. corellium.com/blog/create-sa…

The proliferation of offensive cyber capabilities poses an expanding set of risks to national security and human rights. To better understand this opaque ecosystem, we asked @__winn @Calaquendi44 @ILDannyMoore @Bing_Chris @ollieatnowhere @mruiz12 @CSI_Jen atlanticcouncil.org/content-…