←back to thread

Cyber Scarecrow

(www.cyberscarecrow.com)
606 points toby_tw | 3 comments | 18 Jun 24 08:08 UTC | HN request time: 0s | source
Show context
scosman ◴[18 Jun 24 08:25 UTC] No.40715334[source]
Fun concept.

If the creators read this, I suggest some ways of building trust. There’s no “about us”, no GitHub link, etc. It’s a random webpage that wants my personal details, and sends me a “exe”. The overlap of people who understand what this tool does, and people who would run that “exe” is pretty small.

replies(7): >>40715364 #>>40715425 #>>40715446 #>>40715473 #>>40716059 #>>40716538 #>>40723731 #
vmfunction ◴[18 Jun 24 08:32 UTC] No.40715364[source]
It is a cat and mouse game. And security by obscurity practice. Not saying it won't work, but if it is open sourced, how long before the malware will catch on?

Here is one on github:

https://github.com/NavyTitanium/Fake-Sandbox-Artifacts

replies(7): >>40715392 #>>40715530 #>>40715603 #>>40715668 #>>40716144 #>>40716690 #>>40716934 #
xyzzy123 ◴[18 Jun 24 08:37 UTC] No.40715392[source]
The really fun part is when malware authors add detections for "fake sandbox" and then real sandbox authors get to add those indicators.
replies(1): >>40716933 #
vmfunction ◴[18 Jun 24 12:20 UTC] No.40716933[source]
Look into Windows NT source code that was leaked. The if-else/switch statements in there is just another level of string matching hell. Seems like software development just become "let's jerry rig it to just make it work and forget about it." Pretty sure management (without tech clue) have something to do behaviours like this.
replies(1): >>40717430 #
1. 1992spacemovie ◴[18 Jun 24 13:11 UTC] No.40717430[source]
> Pretty sure management (without tech clue) have something to do behaviours like this.

Always the same bullshit with you people here. Could never possibly someone built a sub-optimal system -- it HAD to be management fucking with our good intentions!

replies(2): >>40720700 #>>40724329 #
2. westmeal ◴[18 Jun 24 18:30 UTC] No.40720700[source]
Lemme guess you're a manager.
replies(1): >>40722647 #
3. Tao3300 ◴[19 Jun 24 03:00 UTC] No.40724329[source]
Well yeah. Left to their own devices, people want to build good stuff. It's when some dumb turd with his metrics and clueless plan shows up that things get screwy.