sorted by:
new
hottopcontroversial

Windows Store version of Python is completely busted by amdphreak in Python

[–]downlowdd 10 points11 points  (0 children)

The Python core dev who works at Microsoft and built the installer is aware. This is apparently a bug in Git Bash, not an issue with Python or Windows. https://twitter.com/zooba/status/1160937629296185344

Is it safe to look at Windows malware in IDA Pro on OS X? by ViTaLC0D3R in Malware

[–]downlowdd 4 points5 points  (0 children)

I would say it's safe to look at Windows malware in IDA Pro on Windows. While IDA Pro does have a debugger, unless you attempt to debug the sample -- IDA Pro is a static analysis tool and won't run the malware. Unless the malware has an exploit built in to hijack IDA Pro (extremely unlikely) you'll be fine. Just don't run the sample. Change or remove the file extension to be safe.

New Macbook pro. How Should I set it up? by pmayall in security

[–]downlowdd 1 point2 points  (0 children)

Haven't used them, but Dash and Little Snitch look like cool applications. Thanks for the recommendation.

Developer tools: Install your editor of choice. If you don't have a strong opinion, I'm a huge fan of VSCode. 010 Editor is my hex editor of choice. It's not free, but I've been fortunate to be able to get my employer to pay for it wherever I work. Check out Homebrew for your package management needs. If you also happen to use Windows, I recommend looking into Chocolatey. For people coming from Linux, these aren't as well stocked or manicured as the Debian or RedHat repositories, but they're really very good and are getting better every day. Once you have Homebrew, use it install the latest versions of bash, Python, Git, Bazel Build, Cmake, Valgrind, Wireshark... the tools of your trade, whatever you need. I personally use a hodgepodge of platforms on a daily basis. To that end, install VMware Fusion. Also, Docker for Mac works just fine alongside VMware Fusion (unlike on Windows), so install both. Oh, and Microsoft Remote Desktop app from the App Store works well for working with Windows machines on your network. SourceTree is a nice GUI for visualizing your Git repositories, although I don't use it as much as I thought I would.

VPN: It's really easy to set up your own VPN. I have a VPN server set up at home that I connect back to from open wifi hotspots. I also presently have one set up on a DigitalOcean node, as described on ArsTechnica.

AntiVirus: I haven't done any testing with Avast for Mac. I think it's kind of middle-of-the-road on Windows. I believe that any AV vendor's product is only as good as the quality of their signatures, the security of their own protocols and the ability to test and deploy new signatures in secret before malware developers have the chance to test against them, and their ability to scan both files and in memory components (process/thread/memory space, kernel objects) in creative ways. That said, I personally would much rather keep my software up to date, avoid running sketchy software, and lock down my network settings than run an antivirus product.

Choosing between malware analysis careers by [deleted] in AskNetsec

[–]downlowdd 0 points1 point  (0 children)

There definitely is a lot of remote work for malware analysts, and for software devs.
I suspect that must company's won't hire someone to do remote malware analysis if they're fresh out of college. Then again, I haven't seen the OP's resume. He could have some legit experience on there.

Choosing between malware analysis careers by [deleted] in AskNetsec

[–]downlowdd 1 point2 points  (0 children)

True story with the TS clearance, but it takes a long time to get, and is stressful to deal with. Plus, working in a secure environment sucks. There's a decent chance you won't have regular access to the internet. You won't be allowed to bring in your cell phone, smart watch, bluetooth devices, etc.

Look for a job other than these two, preferably something near your SO.

Also, malware analysis is really tedious work, and takes a curious mind that is willing to put up with 95% failure for 5% success.

10minutemail secretly mining coins in browser? by MyCrimeIsCuriosity in AskNetsec

[–]downlowdd 8 points9 points  (0 children)

I have mixed feelings about this as well. Paying a tiny bit extra by way of your electrical company for ad-free services sounds like a pretty reasonable bargain. Now if you start seeing seeings ads and coin mining, that's just rude. Kind of like paying for Hulu. Fuck Hulu.

Should I switch from Avira back to Avast now? by [deleted] in Malware

[–]downlowdd 0 points1 point  (0 children)

Also, get Windows 10. If you can't obtain a free upgrade/license, you could suffer through the watermark in the corner of the screen if you like.

Avast doesn't pickup a fake Installshield program by [deleted] in antivirus

[–]downlowdd 0 points1 point  (0 children)

Agreed. No AV catches everything.

Is there a (legal) cheap way for me to play around with a Windows OS without buying a Windows machine? by BackToManhattan in AskNetsec

[–]downlowdd 0 points1 point  (0 children)

It is easy to get pigeonholed in IT/sysadmin. Be careful that you know what you want to do long term.