Extracting BitLocker keys with Volatility (PoC)

Update 2016-03-13:There is more detail, including a link to a plugin for Volatility in the more recent article Recovering BitLocker Keys on Windows 8.1 and 10 . This article is mainly to document a proof-of-concept Volatility plugin to extract the Full Volume Encryption Key (FVEK) from a memory dump of a Bitlocker-enabled Windows machine.… continue reading

Maybe I should stick to software...

A story about bricking some hardware, then encasing said brick in a large concrete slab. People generally only publish their successes and with fairly good reason –  For the publicity, reputation and possibly to impress prospective employers. Conversely, for the opposite reasons no-one wants to broadcast to the world “Actually… I failed miserably at something.” I… continue reading

CryptoWall spreading via HT Flash 0-day

Well that didn’t take long. UPDATE 1: Chromes Sandboxing may be a useful defence. UPDATE 2: Adobe have released a patch: https://www.adobe.com/products/flashplayer/distribution3.html ACTION REQUIRED: Update your Flash player now! Disable Flash unless required, uninstall Flash completely or set Flash as click-to-play in all browsers. A decent guide… continue reading