The Internet Observatory
68 74 74 70 73 3A 2F 2F 74 69 6E 79 75 72 6C 2E 63 6F 6D 2F 32 72 33 78 75 36 61 62 00 00 00 00 00 00 00 00 ,-. / \ `. __..-,O : \ --''_..-'.' | . .-' `. '. : . .`.' \ `. / .. \ `. ' . `, `. \ ,|,`. `-.\ '.|| ``-...__..-` |__| /||\ //||\\
Hi! Welcome to my website.
This space if for presenting my public research in malware analysis, vulnerability research, and cyber threat intelligence, specifically impacting industrial systems and critical infrastructure.Featured
The Story of KurtLar_SCADA.exe
Published: at 04:05 PMCheck out my research in uncovering and analyzing a malware named KurtLar_SCADA.exe, a VNC remote access capability targeting Internet-exposed and poorly secured industrial HMIs. This research was covered in a webinar hosted by SANS ICS. Big thanks to them for having me!
Public Research
Published: at 11:43 AMPlease see this page for complete listing of public research in the form of blogs, whitepapers, and webinars.
CVEs Discovered
Published: at 03:15 PMPlease see this page for exhaustive list of discovered and disclosed vulnerabilities.
Recent Posts
DLL Hijacking Whitepaper
Published: at 01:05 AMCheck out a whitepaper I wrote on DLL hijacking - a flexible and commonly used attack technique.
The Fuxnet Malware
Published: at 11:05 AMRead Dragos'public intelligence report on the 8th ICS-specific malware, co-written by me and Bryce Livingston.
PLC Password Cracking Malware
Published: at 06:05 PMRead about my research on PLC password cracking software being sold online. Turns out, it also gives you a Sality malware infection. This research was covered in major tech journals!