This is a simple blog on security-related topics and more. Socials:

• Mastodon
• Codeberg - new stuff published there instead of github
• Github
• Twitter - retained for historical purposes

All articles are licensed under CC BY 4.0. Built with Lichen-markdown and hosted on Codeberg pages. Many thanks to mainteners of Lichen-markdown & people behind Codeberg!

Articles in inverse chronological order:

• 13/03/2025 - On transferring knowledge about malware internals
  Description: This post explores the question of transferring knowledge about malware internals, particularly malware's functionality up to the functions' bytes. See also capa-binlex project.
• 07/01/2025 - Microcorruption Notes
  Description: My (micro)solutions for Microcorruption CTF.

Projects:

• capa-binlex
  Description: A script that uses CAPA to extract capabilities from malware sample, whose code functions and/or basic blocks are then processed by Binlex server to find a match with already analysed malware sample. The results can be in JSON or markdown.

Notes:

• Secure boot, FDE and TPM on Linux