11th Quarterly Meetup – 29TH July 2017

In this meet, Ashutosh Ahelleya presented on “Bit Flipping Attack on AES-CBC” , Monnappa K A presented on “Understanding Evasive Hollow Process Injection techniques” , Siddharth Muralee presented on “Dynamic Binary Analysis using angr” , Ajithkumar Vyasarao presented on “Security Challenges in D2D Communication” and Shivkrishna A presented on “S2E (Selective Symbolic Execution)” Here is the link […]


11th Meetup – Understanding Evasive Hollow Process Injection techniques

In this meet, Monnappa K A delivered presentation on “Understanding Evasive Hollow Process Injection techniques”   Demo1: Investigating Taidoor’s Evasive Hollow Process Injection Demo2: Investigating Kuluoz’s Evasive Hollow Process Injection. Demo3: Investigating Modified Kuluoz’s Evasive Hollow Process Injection Demo4: Investigating Kronos malware’s Evasive Hollow Process Injection  



This is an announcement for the upcoming Cysinfo cyber security community meetup on 29th July 2017 in Bangalore, India. This meet is completely free and doesn’t require any registration or any other formalities to attend. The meet will start at 9:30 AM IST. We would like to thank  Amrita University and Amrita TBI for supporting and […]


A Journey From Loki Bot Campaign To Venom Spyware

SUMMARY When it comes to Macro Malware, several people try to finish it off with two workarounds, Disable Macro (GPO) and user awareness. That said what if a malicious document doesn’t use Macro codes to do its malicious tasks? What if a document is exploiting a vulnerability to do its malicious activities? That said, Let […]


Cyber Attack Impersonating Identity of Indian Think Tank to Target Central Bureau of Investigation (CBI) and Possibly Indian Army Officials

In my previous blog posts I posted details of cyber attacks targeting Indian Ministry of External Affairs and Indian Navy’s Warship and Submarine Manufacturer. This blog post describes another attack campaign where attackers impersonated identity of Indian think tank IDSA (Institute for Defence Studies and Analyses) and sent out spear-phishing emails to target officials of […]