pepe berba pberba.github.io

AEMonitor: Monitoring Apple Events for Malware Analysis and Detection

pberba.github.io·12w

Decompiling run-only AppleScripts

pberba.github.io·22w

Script Confusion: Playing with AppleScripts hidden in Named Forks

pberba.github.io·26w

MacOS Infection Vector: Using AppleScripts to bypass Gatekeeper

pberba.github.io·27w·Lobsters

Acquiring Malicious Browser Extension Samples on a Shoestring Budget

pberba.github.io·87w

Hunting for Persistence in Linux (Part 5): Systemd Generators

pberba.github.io·223w

Hunting for Persistence in Linux (Part 4): Initialization Scripts and Shell Configuration

pberba.github.io·223w

Hunting for Persistence in Linux (Part 3): Systemd, Timers, and Cron

pberba.github.io·224w

Hunting for Persistence in Linux (Part 2): Account Creation and Manipulation

pberba.github.io·234w

Hunting for Persistence in Linux (Part 1): Auditd, Sysmon, Osquery (and Webshells)

pberba.github.io·234w

Synack 2021 Open Invitational CTF Crypto Writeup

pberba.github.io·236w

DEFCON 29 Red Team Village CTF Writeup: Supply Chain Attack

pberba.github.io·249w

POC Exploit from a CVE: Apache Airflow 1.10.10 RCE

pberba.github.io·258w

DEFCON 28 OpenSOC Blue Team CTF: Lessons and Tips

pberba.github.io·301w

Log in to enable infinite scrolling