About Me

This article talks about ways to hide files from being indexed by Spotlight (mds) on macOS. ...

This article will guide you through four methods to hide files on Finder in macOS. These methods include using a dot-file, chflags, SetFile, and xattr. ...

TL;DR Extended Attributes (xattrs) are stored within the file system as key-value pairs (on supported file systems). There is no predefined size limit for xattrs. Xattrs are often overlooked, particularly when files are transferred between different file systems. The ._ files you see when transferring files between macOS and Windows are due to differences in the file systems. Modifying these ._ files on Windows can have an impact when the files are moved back to macOS (Try it out!...

Introduction Imagine you’re a security analyst needing to quickly triage a suspicious binary. Or perhaps you’re in a competitive Capture the Flag (CTF) event, with a giant binary file to be analyzed. In either scenario, the pressure is on, and speed is paramount. This is where my process shines. Combining the capabilities of GitHub Actions, Capa, and Ghidra, I offer a swift and effective method for binary triage. This guide will walk you through this process, enabling you to comprehend binary files swiftly, a significant advantage in time-critical situations....

Ideas for PowerShell Malware Detection Engine This article is a summary of the ideas our group came up with during the hackathon at GCC 2023. What is GCC 2023 Singapore? gcc.ac/gcc_2023 Students are divided into groups from A to G. The admins tried to make sure that there are no students from the same country in the same group. Other participation's posts (mostly in Japanese): watasuke.net/blog/article/gcc2023-attend/ A blog post from Watasuke, who was our tutor for our team....

Write up for challenges I solved (mostly rev) in WaniCTF 2023. ...

This article offers a writeup for the ASIS CTF Quals 2022’s reversing challenge, “Figole” using Frida. ...

This article offers a writeup for the DUCTF’s DFIR challenge, “ogres are like onions”. ...

This article offers a writeup for the LINE CTF 2022’s crypto challenge, “ss-puzzle.” ...

This article offers a writeup for the zer0pts CTF 2022’s crypto challenge, “Anti-Fermat.” ...