🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

Interesting infection chain using polyglots: proofpoint.com/us/blog/threat…

Paged Out! #6 has arrived! And it's jam-packed with content! You can download it here: pagedout.institute/?page=issues.p…

I made in PagedOut 6 an illustration on the basics of the PDF format.

In PagedOut 6, I showed many PDF tricks by dissecting a crazy yet fully working handmade “Hello World” PDF file.

Doing a free webinar today at 8PM CEST (i.e. livestream with slides) about "files", as entities on the filesystem, seen through the eyes of a security researcher. hexarcana.ch/lp/files/ ← sign up here if interested

The craziest file I made & visualized recently was combining the Doom PDF with a DOS & Windows (EXE & PE) polyglot. It runs Doom on OS from 1993 until today, and Chrome-based PDF viewers! You can make it an HTML/JS polyglot too to run on most browsers! (3/3)

You’re making a PDF about weird file formats and PDF… and the PDF doesn’t let you write “file”… very meta.

"Polyglot files are unnatural and never existed in the wild", they say. Aperture cards are punched cards with a microfiche, indexing 'analogue' images with punched cards data on the same medium. A standard polyglot document IRL defined in the 1960s.

This must've been the most technical discussion so far. Stewart Lynch singlehandedly developed 10x Editor - code editor for large (+5M lines) projects. The editor itself has 0.5M lines of code and Stewart is handling it just fine. He developed FastFind (file search plugin for

QQ: what's your favorite PDF analysis tool [for malicious files or 'standard' ones]? (besides peepdf / Stevens' PDF parser+id / VeraPDF)

New blog post! A bug in GTA San Andreas lay dormant for over 20 years, until unrelated changes in Windows 11 24H2 triggered it. This is a deep dive into how a simple coding mistake erased all seaplanes from the game and made them completely unusable. cookieplmonster.github.io/2025/04/23/gta…

Corkami Your work is so important as it introduces new hackers to hacking file formats. I found it invaluable when doing my PDF research a few years ago. Thank you for putting so much effort into making file formats beautiful!

Now that a few years have passed, I regret not having followed : RetroHQ :'s advice about not releasing ready-to-use source files of commercial projects. ... 1/4

Not a robot, but I've been writing code to procedurally generate 3D prints! Hilbert Curve marble track

Proof video here youtube.com/shorts/LBKs3uU…

🚨 WARNING: A fake domain—cff-explorer[.]com—has been registered to distribute malware. It currently appears as the top Google result when searching for "CFF Explorer". The only legitimate domain is ntcore.com.

[1/4] Have you ever seen a malware sample with a weird—maybe even future—PE timestamp? ➡️ Is it a .NET app? I recently saw some research publications labeled as "timestomped"...but that’s wrong. 🧠 It’s probably just a deterministic/repro build 🔍 Watch this video for a quick

x86matthew's old "Embedding an EXE within a LNK" research came to mind again and I spent a bit playing with .ZIP instead. I found that you can smuggle extra data inbetween the file data and .ZIP's central directory which won't display + can be extracted with powershell

I had a minor printing problem with an article where the last few letters of the longest lines of text were missing. It was a small mental puzzle every 5-10 lines to guess the missing letters. An interesting exercise to stay focused throughout the article.

I just found the coolest csp bypass ever! did you know that a valid pdf can ALSO be valid javascript? (details below)