61 matches found
Memory Forensics Techniques for Automated Detection and Analysis of Go Malware
The Go programming language has become increasingly popular among malware developers due to its ability to produce statically linked, cross-platform executables that challenge traditional analysis techniques. These binaries embed a substantial runtime and compiler-generated metadata and are...
TLSCheck 2.0: An Enhanced Memory Forensics Approach to Efficiently Detect TLS Callbacks
Memory analysis is a crucial technique in digital forensics that enables investigators to examine the runtime state of a system through physical memory dumps. While significant advances have been made in memory forensics, the detection and analysis of Thread Local Storage TLS callbacks remain...
Quantifying Memory Cells Vulnerability for DRAM Security
Dynamic Random Access Memory DRAM is pervasive in computer systems. Cell vulnerabilities caused by unintended phenomena forced retention failure, latency alteration, rowhammer and rowpress lead to unintended bit flips in memory. These phenomena have been explored as attacks to violate data...
Learning the APT Kill Chain: Temporal Reasoning over Provenance Data for Attack Stage Estimation
Advanced Persistent Threats APTs evolve through multiple stages, each exhibiting distinct temporal and structural behaviors. Accurate stage estimation is critical for enabling adaptive cyber defense. This paper presents StageFinder, a temporal graph learning framework for multi-stage attack...
Predicting Tail-Risk Escalation in IDS Alert Time Series
Network defenders face a steady stream of attacks, observed as raw Intrusion Detection System IDS alerts. The sheer volume of alerts demands prioritization, typically based on high-level risk classifications. This work expands the scope of risk measurement by examining alerts not only through the...
EUVD-2014-4134
Malware in sbrugna...
Meme Coins in 2025: High Risk, High Reward, and Rising Security Threats
Meme coins started as internet jokes, but by 2025, they’ve become one of the most volatile and talked-about…...
A Framework for Combined Transaction Posting and Pricing for Layer 2 Blockchains
This paper presents a comprehensive framework for transaction posting and pricing in Layer 2 L2 blockchain systems, focusing on challenges stemming from fluctuating Layer 1 L1 gas fees and the congestion issues within L2 networks. Existing methods have focused on the problem of optimal posting...
XRP Futures Offer New Tools for Navigating Crypto Volatility
As the crypto market continues to mature, investors are looking for sophisticated financial instruments that allow them to…...
Mounting memory with MemProcFS for advanced memory forensics
Mounting memory? This changes everything! TL;DR Memory forensics is crucial for investigations, providing access to volatile data, like running processes and network connections. MemProcFS is a game-changer tool in memory forensics, allowing memory dumps to be mounted and browsed like file system...
Using Volatility for advanced memory forensics
TL;DR Memory forensics enhances investigations by analysing volatile data in RAM unavailable in disk forensics. Key insights from memory include running processes , network connections , encryption keys , and user activity , vital for real-time investigations. Smaller memory images 4-32 GB offer...
Digital Asset Trading Platform UEEx Strengthens Digital Asset Security with New Protection Policy
UEEx enhances user security with new compensation policies addressing abnormal market volatility and asset protection. Users can now…...
[SECURITY] Fedora 40 Update: microcode_ctl-2.1-61.3.fc40
The microcodectl utility is a companion to the microcode driver written by Tigran Aivazian . The microcode update is volatile and needs to be uploaded on each system boot i.e. it doesn't reflash your cpu permanently, reboot and it reverts back to the old microcode...
The Pros and Cons of Bitcoin
Bitcoin, the first and most popular cryptocurrency, offers high potential returns but comes with high volatility and a…...
12 Tips for Managing Cryptocurrency Market Volatility
Are you a crypto investor or looking to get into the market? Here are some key tips for dealing with the highs and lows of the cryptocurrency market...
VolWeb - A Centralized And Enhanced Memory Analysis Platform
VolWeb is a digital forensic memory analysis platform that leverages the power of the Volatility 3 framework. It is dedicated to aiding in investigations and incident responses. Objective The goal of VolWeb is to enhance the efficiency of memory collection and forensic analysis by providing a...
CVE-2023-45289 vulnerabilities
Vulnerabilities for packages: prometheus-pushgateway, hello-world-golang, flux-helm-controller, docker-cli, gh, kaf, terraform, nri-nagios, secrets-store-csi-driver-provider-azure, prometheus-blackbox-exporter, timoni, q, govulncheck, helm-push, influx, nri-memcached, mage, nri-mongodb,...
Potential Price Slippage Due to Gaps in Consecutive Ranges
Lines of code Vulnerability details The method allows appending new Range instances without restrictions on the gap between the end of the last range and the start of the new one. Significant gaps between these ranges can result in considerable price slippages, introducing volatility in price...
Hardcoded slippage of 95% may not be ideal if liquidity is low or during market volatility, may result in revert when depositing or withdrawing
Lines of code Vulnerability details Impact Larger Deposits and/or withdraw may not work with a 95% slippage parameter. If there are many swaps going on, the slippage should be less restrictive to allow for deposits/withdraws. Proof of Concept In TokenisableRange.sol, the slippage is hardcoded at...
Liquidity providers may lose funds when initialising a strategy
Lines of code Vulnerability details Summary Liquidity providers may lose funds when initialising a strategy Vulnerability Detail Liquidity providers may lose a portion of provided liquidity in either of the pair tokens when creating a new position. The init function on TalosBaseStrategy.sol does...