Matthew Seyer

@[email protected]
152 Followers
99 Following
57 Posts
Every bit counts. Rust and DFIR.
GitHubhttps://github.com/forensicmatt/
Youtube Channelhttps://www.youtube.com/channel/UCudIWnSPimNaqMyGoKbaneQ
Matthew SeyerJan 26, 2023
Recon InfoSecJan 26, 2023

Attending #CactusCon 11? So are we! Stop by our table to chat with the team and be sure to check out the 3 talks we’re scheduled for! Talks are being live streamed for virtual attendees as well 🚀

Will AI Take My InfoSec Job? Exploring interesting AI use cases by Andrew Cook

Security Operations with Velociraptor by @eric_capuano & @shortstack

Is Dead Memory Analysis Dead? Finding Infected Systems through Live Memory Analysis by Marcus Guevara

Also, don’t miss our #DFIR CTF! We recommend downloading the evidence in advance. The registration code will be available soon to all registered #CC11 attendees, in-person and virtual!

#CC11 #infosec #dfir #CyberSecurity

Will AI Take My InfoSec Job? Exploring interesting AI use cases

I've got bills to pay, so if AI is taking my awesome infosec job I'd rather get on top of that asap. Join Andrew, a 10 year security operations veteran and complete AI/ML layman, as he pokes and prods publicly available AI models (sometimes with hilarious results) to see if they're better at doing his jobs than he is. From coding and detection engineering to alert analysis and playbook development, are there ways we should be leveraging this recent AI boon to our advantage? Are our jobs safe for a few more years? Stay to the end for a live Q&A with our prospective computer overlord.

Matthew SeyerJan 24, 2023
Ohhh I like! https://github.com/PRQL/prql-query #rustlang
GitHub - PRQL/prql-query: Query and transform data with PRQL

Query and transform data with PRQL. Contribute to PRQL/prql-query development by creating an account on GitHub.

GitHub
Matthew SeyerJan 23, 2023
Jessica HydeJan 19, 2023
Looking to give back in #DFIR? Consider signing up as a mentor for #MVS2023 Mentorship Day. You will spend 30 minutes with a paired mentee for a 1:1 for a session. Register here to be a mentor: https://magnetmarketing.wufoo.com/forms/mvs-2023-mentor-registration-form/?utm_source=Google&utm_medium=cpc&utm_campaign=2023_EV_MVS_PaidMedia
Fill out this form to sign up as a mentee https://magnetmarketing.wufoo.com/forms/mvs-2023-mentorship-application-form/?utm_source=Google&utm_medium=cpc&utm_campaign=2023_EV_MVS_PaidMedia
MVS 2023 - Mentor Registration Form

Magnet Forensics is hosting our 4th Magnet Virtual Summit between February 21st - March 2nd, 2023. We are seeking out mentors for the 2023 Magnet Mentorship Day on Monday, February 27th and would love to have you. Please fill out the form below to apply to be a mentor and let us know when you're available to meet with a mentee.

Matthew SeyerJan 11, 2023

I created a new #rustlang crate I’m super excited about! A library that implements Read/Seek on top of #aws snapshots. https://crates.io/crates/awssnapio

I look forward to showing some really fun stuff I have done with it over the next couple weeks like layering libtsk on top of streamed snapshots. Huge #dfir win!

crates.io: Rust Package Registry

Matthew SeyerJan 7, 2023
jonpalmiscDec 24, 2022
Some morning reversing since I was curious about something...
Parallels can download Windows 11 Arm images from directly inside the app. This was interesting to me since this normally requires a Windows Insider account and I haven't seen any other software that does this. [1/n]
Matthew SeyerJan 6, 2023
Uggg why does it seem like every time I use github actions there is always a new way of doing things?? I don't have time to keep trying to figure out how to make releases :(
Matthew SeyerJan 6, 2023
James  Jan 6, 2023

The performance of Rust on Lambda is astonishing 🤯 with 128mb of memory an SQS sourced function takes 150ms to deserialize the message and write the contents to DynamoDB. Including a cold start

Interestingly, the book I'm reading at the moment about Rust mentions resource constrained environments as a use case for Rust. Could we consider Lambda a memory constrained environment? In that, the cost of your function directly correlates to the assigned memory. 🤔

#aws #serverless #lambda #rustlang

Matthew SeyerJan 2, 2023
I started using the #rustlang clap library back when it was version 2. I somehow missed when it went to 3. I come back to it on 4 and it has changed so much I'm having to relearn it. At first it irritated me because none of my old templates that I'm so accustomed to copy/pasting into all my projects no longer works... but now as I start learning the new version, I am really liking it. Being able to define my application as a struct and then implement functionality for it has advantages.
Matthew SeyerDec 30, 2022
Astra Kernel Dec 30, 2022

Reverse Engineering Rustlang Binaries - A Series

https://brightprogrammer.netlify.app/post/reverse-engineering-rustlang-binaries-0x1-empty-program/

Author:
@brightprogramer

#rustlang #rust #rustaceans #rustprogramming #ReverseEngineering #infosec #ctf

Reverse Engineering Rustlang Binaries - A Series | BrightProgrammer

I’ve been struggling with reverse engineering rustlang binaries for a while in CTF challenges. So I’m starting a reverse engineering series where I reverse engineer several rustlang binariesa and try to understand how they actually work.

BrightProgrammer
Matthew SeyerDec 29, 2022
Martin SK. 🔒Dec 29, 2022
Released regipy 3.1.2! https://github.com/mkorman90/regipy/releases/tag/3.1.2 Regipy is an os independent python library for offline parsing of windows registry hives. #dfir #infosec #forensics
Release 3.1.2 · mkorman90/regipy

What's Changed Typed Paths Artifact by @andreisss in #241 Update README.rst by @IlluminatiFish in #243 Release 3.1.2 by @mkorman90 in #244 New Contributors @andreisss made their first contributi...

GitHub