Claus Cramon Houmann

@claushoumann
535 Followers
772 Following
16.5K Posts
Infosec Librarian
@BSidesLuxembourg co-organizer. 
Forgetter of things. But never knew much to begin with.
#OpenTIDE, #DetectionEngineering #IamTheCavalry #CloudSec
Claus Cramon Houmann12m ago
Der Radiologe 🏳️‍🌈12h ago

Today in 2007, Matthew Diaz — a U.S. Navy JAG officer at Guantánamo — was sentenced to prison for leaking the names of 551 detainees so they could finally get legal representation. He sacrificed his career to uphold the rule of law when his government wouldn't.

Thank you, Matthew. 🕊️

🔗 https://en.wikipedia.org/wiki/Matthew_Diaz

#Whistleblower #Guantanamo #HumanRights

Matthew Diaz - Wikipedia

Claus Cramon Houmann16m ago
Vegard#656h ago

This is from today. This is how the baby Killers look when they come to kidnap you in international waters. The massive amounts of guns and gear masking their sick tiny hearts. Also litteraly hiding behind facemasks as the criminals they are.

#GlobalsumudFlotilla #BreaTheSiege #Gaza

Claus Cramon Houmann17m ago
Rairii   7h ago
hi everyone

given one #bitlocker #0day is already out there, here's my own bitlocker 0day, I added it to my repo listing bitlocker attacks.

Introducing "ram leak": https://github.com/Wack0/bitlocker-attacks#ram-leak

As we all know, the boot environment allows booting from a ramdisk. This involves loading a file from disk into RAM, as expected.

However, "file" and "disk" can be arbitrarily chosen, and "disk" being a BitLocker encrypted partition is a supported scenario. Using another trick (same one used with bitpixie earlier) it's possible to get the keys derived without going through the legacy integrity validation checks too if relevant.

You can see where this is going. It's possible to leak any file from a bitlocker encrypted OS partition into RAM as long as you can get the keys derived (ie, TPM-only scenario).

The catch is that booting into the NT kernel marks that memory area as free so it could get overwritten there, but there are other ways to dump the memory area, and a PoC is included with my preferred method (it's only a PoC so just displays a hexdump of the first sector of the file)

The video shows successful exploitation in my test VM, it has secure boot enabled (you can tell because VMware shows an efi shell option on the boot menu when secure boot is disabled).

#infosec #windows
Claus Cramon Houmann19m ago
Malcat7h ago

We had 9 LLMs battle on real-world #malware triage and static unpacking tasks, using only #Malcat MCP server.

We compared not only their results, but also their speed and cost.

Full write-up:
https://malcat.fr/blog/benchmarking-llms-for-malware-triage-and-static-unpacking-with-malcat/

Claus Cramon Houmann20m ago
Davi Ottenheimer7h ago
Cloudflare CEO’s Fascist Propaganda Memory Hole https://www.flyingpenguin.com/cloudflare-ceos-fascist-propaganda-memory-hole/
Cloudflare CEO’s Fascist Propaganda Memory Hole | flyingpenguin

Claus Cramon Houmann36m ago
Show threadThousand Madleens to Gaza1d ago

⛵️🇵🇸 " We sail because our governments failed.

Those behind the world’s largest civilian-led maritime mission sail because silence is more dangerous than action.

But the real heroes are the Palestinian people - enduring, resisting, and surviving occupation every single day. "

#globalsumudflotilla #palestine #gaza #freepalestine

Claus Cramon Houmann36m ago
Vegard#659h ago

The flotilla is being intercepted now!

#GlobalSumudFlotilla #BreakTheSiege #Gaza

Claus Cramon Houmann37m ago
Sablebadger14h ago

My #trans teen is working on a senior project related to music and mental health, specifically in marginalized communities (like trans/queer kids).

If you know of any articles, papers, pages, citations, information on how music and/or live music shows help mental health especially in those communities, can you share it with me to pass along to them?

Please boost for broad reach? Just trying to arm them with as much info as I can to help.

#transkids #transyouth #music #mentalhealth

Claus Cramon Houmann39m ago
toomas ilves, ex-verif9h ago

RT by @ilvestoomas: the sixth time president trump has aired this specific threat, though without as dire/explicit consequences this time around.

the sixth time president trump has aired this specific threat, though without as dire/explicit consequences this time around.

Barak Ravid (@BarakRavid)

BREAKING: President Trump told me in a phone call that "the clock is ticking for Iran" and added: "They better get moving fast (towards a deal) or they are not gonna have anything left". More details on @axios soon

https://nitter.net/BarakRavid/status/2056056489538679176#m
---
https://nitter.net/ianbremmer/status/2056134940278858152#m

Claus Cramon Houmann40m ago
toomas ilves, ex-verif9h ago

RT by @ilvestoomas: This young couple from Kherson had their whole life ahead of them.

Yesterday, a russian artillery strike killed 22-year-old Yelyzaveta.

Her husband Ihor survived — but lost both legs. He is now fighting for his life in intensive care.

Their child is not even 3 years old.

And while Ihor lies in a hospital bed, his mother is fighting cancer.

One russian shell destroyed an entire family.

This is russian terror.
---
https://nitter.net/NAFOvoyager/status/2056049219601871346#m