Ali Hadi | B!n@ry

@[email protected]
572 Followers
54 Following
65 Posts
DFIR and Adversary Simulation
Keybasehttps://keybase.io/DFIR
YouTubehttps://www.youtube.com/c/AliHadiC5W
Emaildfir @ protonmail.com
Show threadAli Hadi | B!n@ryFeb 10, 2025

The course is being used by LE agencies, university professors, and many other professionals. If you have any feedback? You are very welcome to share with us. Read more about the decision and URL to the course below. #DFIR #Cybersecurity #infosec

https://www.cyber5w.com/into-dfir.html

Cyber5W | Sponsors

Digital Forensics Courses and Training

Ali Hadi | B!n@ryFeb 10, 2025
Hey #DFIR community. Last month, we decided to open our @cyber5w C5W-100 Intro to Digital Forensics course & make it FREE; yes completely FREE! Since then more than 1K of new learners joined & we hope more will too. Please share with anyone who wants to learn. #Cybersecurity
Ali Hadi | B!n@ryOct 22, 2023
Long time, no see!
Ali Hadi | B!n@ryJan 2, 2023

Just finished uploading the final set of labs that are published publicly. That's all folks for now. Hope they will be useful to someone out there!... #RE #Offsec #ExploitDev #SoftwareExploitation

https://exploitation.ashemery.com

OFFENSIVE SECURITY & REVERSE ENGINEERING (OSRE) Course

Offensive Software Exploitation Course

exploitation-course
Ali Hadi | B!n@ryJan 1, 2023

Since some are only on Mastodon. I wanted to share my Offensive Security & Reverse Engineering (OSRE) course labs (docx) which I uploaded to my repo found below. Most of them have very detailed instructions and should be great to get you started in Software Exploitation. They are not just good for software exploitation, but even learning about debugging & diff x86 instructions. There are some assembly quizzes which might be useful, I'll share those too. You can find them under the line saying "Labs 2022 can be found here"

Repo: https://exploitation.ashemery.com
Videos (EN): https://www.youtube.com/playlist?list=PLCS2zI95IiNybAAQ0HL88YzwRpLXje5y6
Videos (AR): https://www.youtube.com/playlist?list=PLCS2zI95IiNyo5AhbVIL2hVX7zhuSkOkz

#Offsec #SoftwareExploitation #RE

That's it for 2022 ... Good luck you all with 2023 :)

OFFENSIVE SECURITY & REVERSE ENGINEERING (OSRE) Course

Offensive Software Exploitation Course

exploitation-course
Ali Hadi | B!n@ryDec 25, 2022
Tavis OrmandyDec 25, 2022

A few people have asked me about the #LastPass incident. I don't really have anything new to add but stand by this article I wrote a few years ago!

https://lock.cmpxchg8b.com/passmgrs.html

Password Managers.

Ali Hadi | B!n@ryDec 21, 2022
𝙽𝙴𝚃𝚁𝙴𝚂𝙴𝙲Dec 21, 2022
Are you struggling to analyze Tor traffic from a #malware implant? Check out this blog post, which explains how Tor traffic can be sniffed BEFORE it gets encrypted. #PCAP
https://netresec.com/?b=18C38eb
TorPCAP - Tor Network Forensics

Unencrypted network traffic, destined for the Tor network, is sent between localhost TCP sockets on computers running Tor clients, such as the Tor Browser. In this blog post I show how anonymous Tor browsing can be visualized, by loading a PCAP file with localhost traffic into NetworkMiner. We call[...]

Netresec
Ali Hadi | B!n@ryDec 20, 2022
Edits here are free; no $s required ...
Ali Hadi | B!n@ryDec 19, 2022

I still have not found the answer to this and it would be great use to so many if there is an answer.

What is the Event ID for when a Volume Shadow Copy gets deleted? I know #Sysmon can show you this, but is there anything else? #DFIR #DigitalForensics #SOC #SIEM #BlueTeam #malware

Ali Hadi | B!n@ryDec 16, 2022
Alexis Brignoni  Dec 16, 2022

Extremely kind interview by Alex Muldwych. We talk about #DFIR, #Python, and the importance of time, among other things.

Check it out here:
https://thesecuritynoob.com/interviews/interview-with-dfir-legend-alexis-brignoni/

Interview with DFIR Legend Alexis Brignoni - The Security Noob.

A blog about digital forensics and incident response with a smidgen of hacking thrown in.

The Security Noob.