Profile picture
, 3 tweets, 3 min read
There is Base64 encoded malicious stuff that one sees very frequently

I made a cheat sheet for us so that we can learn and spot malicious stuff faster ⚡️

gist.github.com/Neo23x0/6af876…
Ah - I also forgot the "sal" keyword which was very frequent in spring / summer this year.

Here is an explanation
threat.tevora.com/5-minute-foren…

Sample
hybrid-analysis.com/sample/b744129…
FYI I've added a 'Mnemonic Aid' column which could help you remember the expressions

However, I am not native speaker and you could possibly find your personal mnemonics.
Consider mine as suggestions.
Missing some Tweet in this thread? You can try to force a refresh.

Enjoying this thread?

Keep Current with Florian Roth

Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

Twitter may remove this content at anytime, convert it as a PDF, save and print for later use!

Try unrolling a thread yourself!

how to unroll video

1) Follow Thread Reader App on Twitter so you can easily mention us!

2) Go to a Twitter thread (series of Tweets by the same owner) and mention us with a keyword "unroll" @threadreaderapp unroll

You can practice here first or read more on our help page!

Related threads

Profile picture
Netwar System
@NetwarSystem
1) One of the things in looking over Roger Stone puzzles me. The tech operators make mistakes, but none of them directly implicate Ali Akbar, which is odd, given his role with the Proud Boys. cc: @ashkenaz89
@ashkenaz89 2) Proud Boy Enrique Tarrio appeared with Roger Stone at his arraignment. Ali Akbar is running some infrastructure for Stop The Slander, which supported Gavin McInnes vs. @splcenter

theguardian.com/world/2019/feb…
@ashkenaz89 @splcenter 3) Recall that Tarrio took over Proud Boys after McInnes exited, despite a brief period where Jason Lee Van Dyke seemed to be in charge.

abovethelaw.com/2019/01/promin…
Read 24 tweets
Profile picture
Hillel
@hillelogram
one like = one fact about me, but it's the same fact each time
1/ I've never been to France
2/ I've never been to France
Read 34 tweets
Profile picture
Alexander Granin
@graninas
I’m pretty sure there is a big demand for materials about high level architecture and design of big applications in pure FP (Scala, Haskell). This is what I'm actually doing for a long time.

Let me describe the materials I have to the present moment (ongoing thread).

1/
1) Functional Design and Architecture book

In this book, I develop a complete set of tools and approaches for building complex applications in a pure functional language (Haskell).

I’m working on the book currently. 5 chapters are available already:
graninas.com/functional-des…

2/
It tells how to make a finely structured, layered applications composed of subsystems and services, with database support, multithreading, safe concurrency. The code should satisfy requirements: testability, maintainability, simplicity, should be easy to understand.

3/
Read 29 tweets
Profile picture
Dominic Ligot
@docligot
If you are using an older SMART wifi, FYI. I've discovered proof that China is spying on us. (Steps follow).
I was editing my mom's website when I found a random script attached to the front page.
Of course I didn't write this, so I checked it out. It was a funky code that monitors whether you are logged in certain websites... seems to be domains in China!
Read 69 tweets
Profile picture
Jonas K. Lindeløv
@jonaslindeloev
I've made this cheat sheet and I think it's important. Most stats 101 tests are simple linear models - including "non-parametric" tests. It's so simple we should only teach regression. Avoid confusing students with a zoo of named tests. lindeloev.github.io/tests-as-linea… 1/n
For example, how about we say a "one mean model" instead of a "parametric one-sample t-test"? Or a "one mean signed-rank model" instead of a "non-parametric Wilcoxon signed rank test"? This re-wording exposes the models and their similarities. No need for rote learning. 2/n
Or in R:
lm(y ~ 1) instead of t.test(y)
lm(signed_rank(y) ~ 1) instead of wilcox.test(y)

The results are identical for t.test and highly similar for Wilcoxon. The images show results when N=50. 3/n
Read 22 tweets
Profile picture
Michael D. Hill
@GeePawHill
tdd pro-tip #5: "No, smaller." in TDD, almost without exception, we want everything: a test, a method, a class, a step, a file, really, almost everything, to be as small as it can be and still add value to what we're doing.
this is the most common gaping hole in the practice of the noob, and it's a constant obsession for the olb. but it's not just an old-timer's tic, like the way my lips purse when someone uses the word "enterprise". there's rationale here, deep rationale. let's poke at it.
we owe our entire trade to the invention of the transistor. a Core i7 quad-core cpu has about 700 million transistors in it. there are a couple of billion of them in an iPhone.

do you know what's great about transistors?
Read 38 tweets

Trending hashtags

#weapons #makeshift #UnitedStates #Qamishli #AstanaProcess #enemy #CrimesAgainstHumanity #Turkistan #Kurdish #SyrianChristians #territorial #studio #militias #Ramadiya #ChemicalAttack #WWDC16 #Yemen #Kilicdaroglu #HYPOCRISY #supporting #SaudiArabia #peace #reconciliations #Italy #allies
Follow Us on Twitter!

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just three indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3.00/month or $30.00/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!