Anybody knows how to run Python scripts from Ghidra's Script Manager using PyGhidra and *NOT* Jython?

PS: I have already opened an issue in their github https://github.com/NationalSecurityAgency/ghidra/issues/7856

#Ghidra #PyGhidra

The 3rd episode of our #OffensiveRust series, "Streamlining vulnerability research with #IDAPro and #Rust", is here! @raptor introduces new tools to assist with reverse engineering and vulnerability research, based on @HexRaysSA IDA and @binarly_io idalib.

https://security.humanativaspa.it/streamlining-vulnerability-research-with-ida-pro-and-rust

"Europe has also underestimated the geopolitical dimensions of technology, leaving itself vulnerable to dependencies and intensifying global competitive
pressures. This vulnerability has become especially apparent amid rising trade wars, the resurgence of populist nationalism, and escalating geopolitical rivalries." - page 98 of the @eurostack paper: https://www.euro-stack.info/docs/EuroStack_2025.pdf

HyperDbg v0.13 is out! 🎉

This version comes with a new command '!pcicam' for dumping and interpreting PCIe CAM, new anti-anti-hypervisor methods, improved MMIO scripting, plus lots of bug fixes & improvements.
Big thanks to @0Xiphorus & @AbbasMasoumiG.

https://github.com/HyperDbg/HyperDbg/releases/tag/v0.13

More details are available here:
https://docs.hyperdbg.org/commands/extension-commands/pcicam

A Dutch government department (not sensitive) has deeplinked an image from my website on their (apparently) autoreloading intranet page. It is a good thing I'm a responsible person (ahum). Here is the number of hits/minute, clearly showing the lunch break, and that far fewer people work on Friday, and that most visits are in the morning. This is a GREAT example of how much data you leak by putting external content on your (government) web page.

"Search ads accounted for more than half of Alphabet’s revenue and nearly three-quarters of the company’s advertising revenue in 2023, according to company filings." Source: https://wallethub.com/blog/google-quality-issues-report/147091

Incentives matter. This is what makes Kagi different: https://help.kagi.com/kagi/why-kagi/why-pay-for-search.html

#Kagi #AdFree #Search #deGoogle

I post-processed a bunch of Univac 1050 software documents that were in the scanning queue.
http://bitsavers.org/pdf/univac/1050
In the 00s, someone on eBay was selling 7 track diagnostic source tapes from the basement of a Univac factory for the 1050 which Paul Pierce read for me. I haven't looked at the images in 20 years but it's probably time to see if I can print out the data.
As far as I know, this is the only 1050 code that survives.

@bitsavers

This isn't a sexy exploit, but this is exactly the kind of thing that can ruin people's lives. Inform your network about how to spot these.

https://www.bleepingcomputer.com/news/security/beware-paypal-new-address-feature-abused-to-send-phishing-emails/

New from 404 Media: all 50 states have introduced right to repair legislation. Not all have passed, but it's just a massive milestone for the right to repair movement that just a few years ago was demonized by big tech https://www.404media.co/all-50-states-have-now-introduced-right-to-repair-legislation/

New video: “rev.ng: an overview”.

Check it out: https://www.youtube.com/watch?v=qbt6Ukoa-sQ

The Register so YMMV but still https://www.theregister.com/2025/02/20/gitlab_thrice_sued/. #ai

Five things we DID NOT do last week

1. Track users
2. Send data to another company or organisation
3. Boost or demote political content
4. Use Google or Bing Search API
5. Train AI using indexed content

Dan Farmer, who spoke at the first #DEFCON is still at it, this time pointing out some #BMC #IPMI problems on SuperMicro (and most likley other) systems:

https://trouble.org/?p=1227