#[0] #[1] #[2] #[3] #[4] Not sure generic static analysis would yield any meaningful ...

Why Nostr? What is Njump?

npub1j0…lw8rl

2023-03-06 16:45:29

in reply to nevent1q…aeev

Revvy 🇨🇦 (npub198u…tpm2) 1ns0mniak (npub1rkd…ehu5) Soy_Magnus (npub1xe5…xg59) J上校👮🇺🇦🏳️‍⚧️ (npub12u9…pkh3) pistolero (npub1ch8…sw60) Not sure generic static analysis would yield any meaningful results if everything needed for remote shell access is implemented in java or downloaded in runtime. Most virus scanners are targeting widely-known payloads, references to certain syscalls and obfuscation patterns, which may appear only in runtime and as another process, or not at all -- requiring more fine-grained control over what certain process can do, which is unreliable and notoriously difficult to configure even when your software is well-designed, well-documented, open-sourced and static in configuration. Sandboxing with broad permission restrictions may be much more viable alternative here, while running windows on real hardware/with access to anything sensitive is already an automatic loss.

Author Public Key

npub1j05dh9hemkteevv6env2ssv6zrlhj9s904zzknsmylqm2p03w4qsxlw8rl

Show more details

Published at

2023-03-06 16:45:29

Kind type

1 Short Text Note

Event JSON

{ "id": "ef042e63c04f1610af6be81fedce1cde058f298b5248990c34bf0db345a03e44", "pubkey": "93e8db96f9dd979cb19accd8a8419a10ff7916057d442b4e1b27c1b505f17541", "created_at": 1678121129, "kind": 1, "tags": [ [ "p", "29f9a6d69e6be007b5a7f1b0f1329f044df802c8d138e13ed6642575988b115e", "wss://relay.mostr.pub" ], [ "p", "1d9aa2458ad0a96fc7df33d24d5dc0e4704e9b1050e31f5acdf99aa7017c5886", "wss://relay.mostr.pub" ], [ "p", "3668738e5c8086cbdbdb6c1b20dd9b38e53cd79de7addff432e769fd63aa4b63", "wss://relay.mostr.pub" ], [ "p", "570ba1df69cf6c32ba11835adce997258c2870ef7754194cb6dd32adc0bc63c4", "wss://relay.mostr.pub" ], [ "p", "c5cf39149caebda4cdd61771c51f6ba91ef5645919004e5c4998a4ea69f00512", "wss://relay.mostr.pub" ], [ "e", "c5fd433f55f745d381c95da6d23afa965090f4f85e4277eeff194a38e4e2da2d", "wss://relay.mostr.pub", "reply" ] ], "content": "#[0] #[1] #[2] #[3] #[4] Not sure generic static analysis would yield any meaningful results if everything needed for remote shell access is implemented in java or downloaded in runtime. Most virus scanners are targeting widely-known payloads, references to certain syscalls and obfuscation patterns, which may appear only in runtime and as another process, or not at all -- requiring more fine-grained control over what certain process can do, which is unreliable and notoriously difficult to configure even when your software is well-designed, well-documented, open-sourced and static in configuration. Sandboxing with broad permission restrictions may be much more viable alternative here, while running windows on real hardware/with access to anything sensitive is already an automatic loss.\n\nhttps://eientei.org/media/68b4eb1c2bb9db0531328ff0ce6929f55d230dd60d3dfc6c9a58ec6ce7a94c8d.png?name=image.png", "sig": "6c6df0519317acba41cd055024d76925f1d5d2382f5074958612e3812c677aa4198f777dc98bf0d0c423cfaf5b6360b914691341c950f7845f88bf7b564c3831" }