Rairii @ Rairii @haqueers.com

Reversing (malware and otherwise); appsec and websec; embedded security; ex

---

Read more

Posts

1

Comments

3

Joined

3 yr. ago

@LeberechtReinhold I can understand why it was done in the first place, but MS just blindly signing anything they are given is stupid, they should at least disallow binaries packed by themida or vmprotect.

vmprotect on a driver is an indicator of compromise, especially if the cert/opus info references a chinese entity.

@B3CHAD @UkaszGra https://co.wukko.me/

@wmrch fritter got a commit that fixed it recently, not sure when a new version will "officially" release but you can download the github actions apk for that commit and keep using fritter : https://github.com/jonjomckay/fritter/suites/14085021499/artifacts/787559184 :)