rootkall

Intel x86 CPU Internals

Inside MacSync: The Stealer Silently Backdooring Ledger Wallets

Quirks of an EDR: Usermode

Another example of an Opsec failure in malware C2 Panels

Gremlin Stealer: Strings decryption + Where data is uploaded

Quick LummaC2 discussion (fnv1a instead of murmur2 !?)