Share this page!

SentinelOne Profile picture
Twitter logo
Dec 23 13 tweets 9 min read
🧵 Everyone’s chatting about 🤖#ChatGPT. Here are 11 things it can do for #malware analysts, #security researchers, and #reverse engineers. A thread >>👇 🧵
1/13
🙋🏻‍♀️ Learn how to use reverse engineering tools more effectively. Use #openAI chat bot to get rapid interactive help on your reversing tools.
2/13
👾 Teach yourself #assembly language. Ask #ChatGPT to convert high-level code into assembly. #arm #intel little endian big endian #nasm #masm. It knows them all.

3/13
😉Understand how source code translates to #disassembly. How do changes in source code reflect when viewed through the eyes of a disassembler? You can coax #ChatGPT into disassembling code for you.

4/13
🧪 Write PoC source code quickly. #ChatGPT can help us to write source code to test our theories, and it knows all your favourite languages #golang, #rust, #python, #c and more.

5/13
🗣️ Translate Between Instruction Sets. Familiar with #Intel but need to learn #arm? Tell #ChatGPT to translate assembly code written in one instruction set to another.

6/13
🧐 Compare language or platform specific conventions. Query the AI about differences in memory management techniques or calling conventions in different languages or platforms.

7/13
Analyze code segments in malware samples. Ask #ChatGPT about the purpose of functions in pseudocode or disassembly.

8/13
☢️ Identify malicious activities in code. Map functions in #malware to specific malicious capabilities, similar to what the #capa #IDAPro plugin does.

9/13
👀 Speculate on function purposes and objectives. “What would malware use the following function for” and throw in your pseudocode to better understand what threat actor objectives.

10/13
🐞Understand vulnerabilities and exploit code. Understand how #cyber threat actors are exploiting bugs, and how to defend against them

11/13
👩🏿‍💻 Automate reverse engineering tasks. We all want to work more effectively. #ChatGPT can help write scripts in #IDAPython or #java for #Ghidra.

12/13
Want to know more about how #ChatGTP can help reversers and malware analysts? Check out the post by @milenkowski & @philofishal
13/13
sentinelone.com/labs/11-proble…

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with SentinelOne

SentinelOne Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @SentinelOne

SentinelOne Profile picture
Dec 16
👇🧵Here are 10 reliable tools we use for research and discovery in the darkweb. A thread >> 🧵 1/12
Fresh Onions 🧅 - long-standing, ultra-reliable spider/scraper. Updates every few hours. Shows the Up/Down status of each site and its age. Many mirrors, #opensource 2/12 …hdrww7wnt5qmkoertwxmcuvm4woo4ad.onion
Ahmia Search - probably the closest you will get to “Google” on the Dark Web. Ahmia is stable, with reliably interesting results. Results can also be filtered by age, which not all engines allow for. 3/12
…ldy2hlmovfu2epvl5ankdibsot4csyd.onion
Read 12 tweets
SentinelOne Profile picture
Dec 10
👇Our favorite tools for hunting and tracking malicious infrastructure. A Thread 🧵👇
1/9
1. @AeonTimeline: Timelining threat campaigns is incredibly useful for simplifying and organizing complex threat activity. @TomHegel even wrote a blog about it: sentinelone.com/labs/putting-t…

2/9
2. @MaltegoHQ: Maltego allows you to quickly pull data from profiles, posts, and comments into one graph, where we can conduct text searches and see connections.
maltego.com
3/9
Read 9 tweets
SentinelOne Profile picture
Dec 7
👇Here are the top #macOS malware we saw in 2022, a thread 🧵👇
1. #Shlayer malware is one of the top macOS malware discoveries in 2022. It's known for disguising itself as a legitimate Adobe Flash Player update.
2. #EvilQuest #ransomware has made its way onto macOS systems, encrypting user files and demanding a ransom to restore access.
Read 12 tweets
SentinelOne Profile picture
Dec 2
📚Here’s our list: Must-read books for every #infoSec practitioner, a thread 🧵👇
⏲️ Countdown to Zero Day by Kim Zetter - Stuxnet and the Launch of the World's First Digital Weapon

@KimZetter
amazon.com/Countdown-Zero…
⌛️Sandworm by Andy Greenberg - A New Era of Cyberwar and the Hunt for the Kremlin's Most Dangerous Hackers.

@a_greenberg
amazon.com/Sandworm-Cyber…
Read 8 tweets
SentinelOne Profile picture
Nov 20
🧵Let's talk about #Telegram - here are ten useful cybersecurity groups and channels we watch:

A thread:
1. Cyber Security News (30k+ members)

Cyber Security News is a feed channel for links to breaking news stories across the internet, everything from #TechCrunch to #Portswigger. It’s a one-stop shop for cyber-related news with your morning coffee.

telegram.me/cyber_security…
2. Cyber Security Experts (23k+ members)
A great channel for exchanging #information about #cyber, #IT, and #security. Mainly used to get answers to questions and help other security experts to enhance their security maturity.

t.me/cybersecuritye…
Read 13 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us on Twitter!

Send Email!

:(