Firefox flagging as malware, would be interesting if you find anything on it

That's good to hear it wasn't done on purpose. Too bad their security sucks enough for them to get hacked like that.

@@UltimatePerfection And that their practices suck enough that they don't mention it on their website!!

bit late of them, once something like this happens they should be done as a service.

@@UltimatePerfection I hope that they learned their lesson and improved security.

I don't think they wrote the malware, not really. The script looks like the output generated by a few tools to write installer wrappers for you. The only thing unique to their application over any other admin application to run at startup(for legit reasons like providing a VPN or checking a hardware device/driver) is the naming, and often that's pregenerated from a prefix by tools to ensure that it doesn't conflict with other logic sharing the script.

i always comment my malware... dont want others to think i am a troglodyte.. :) // this prints a message console.log("a message");

its a bunch of libraries and tools they used to make the malware not the malware itself.

A good mentor always teaches his protege'/s discipline, which proper commenting is considered good house-keeping and proper etiquette. ;-)

Abeg why u add Nigerian there😢😂

@sparks621 Nigerians are 10 percent in NSA.

Are we just ignoring that the primary function of obfuscated code is to disguise malware?

@@serkhetreo2489 scammers lie about who they are in their emails they send to elderly folks to try and trick them. Pretending to be a Nigerian Prince is the most famous example.

EXACTLY!

doesnt work when its multilayered, that only works when its a monolayer obfuscator

Yep. With my Sony headphones it's easier to hear, I can lower the volume but I still hear the voice on steroids somehow. But I guess most listeners don't hear / don't care .....

The volume is normalized to KZfaqs standard. Stop listening to things on full volume.

@@nordgaren2358 I’m not talking about normalization, which is just a flat volume adjustment across the board, I’m talking about compression, which modifies loudness by different amounts over time to bring the loudness of quiet sounds and the loudness of loud sounds closer together.

Definitely too dense

@@lalanotlistening voiceovers are compressed. That's how it is. They need to be. It's for clarity.

could also be Hardware ID, but i think that's usually HWID instead

keylogger and perhaps a usb file downloader or usb identity/crypto device stealer,

Yet nobody can point out timestamps that need editing

@@nordgaren2358 As I read this, another pop that was super annoying happened, 14:26 it's constant through the video.

it has a windscreen on it already. An additional pop-filter is silly in this context. Also, the audio sounds great.

@@nordgaren2358 Well I did try, seems like the comment got deleted. Hm.

It can be used to get keyboard/mouse inputs (however there are a lot of ways to do this) It can be used to detect any USB devices

Another Dev on my team hated VSCode. Now he's been fired for low productivity while I got a raise.

@@ZM-dm3jg And everybody clapped

Neovim and emacs maybe the best editors

​@@wafinashwan8242 Neovim is no joke, i used to use VSCode, i tried Neovim and it really makes you do things faster, also doesn't spy on you.

Terminator

It can be used for legit purposes, like generating serializers on the fly as classes in dynamic assemblies.

you were lied to

Noooo

Would you like just anything from CTF time, or like TryHackMe/HackTheBox/practice wargame sites?

@@_JohnHammond hackthebox

more importantly a good reason to stop using code you let a foreign agent encode without having an idea what it's turned into.

Python is not the issue. It's designed to promote legible code, the exact opposite of obfuscation, which on the other hand is highly suspect. Trusting someone else with manipulating your programs like this is also absurd from any security perspective, which are the only ones where the operation could be motivated to begin with.

@@0LoneTech Exactly. And this is why it's a favorite language of the spineless beancounting PHBs dreaming of replacing his staff with graduates that will do the same work for less. A good programming languages promotes job security over code legibility, because as soon as someone else understands your code, you can be easily replaced. That's why Perl should be used instead - not only it is way faster than Python will ever be, but it also provides a natural facilities to ensure that the company you work for cannot fire you or their software will not be able to be maintained anymore and would need to be rewritten from scratch (a huge cost compared to keeping you employed).

I read your latest reply. Uhhh, sir: what if I'm sending my goddamn code to be open source??? Like, is not just bean counters that need it to be legible!!! What if you're part of a team, or, again, want your code to be open source? You are making a bad argument for your perfferd language, you are pretty much admitting that, because you don't want to be fired, you'd kill other developers time.. . Just to try and screw over big guys? Seriously, dude.... If you wanna really fight the big folks, don't make your code unreadable just to work for big tech, make good, open source alternatives that are BETTER than what they have (don't forget to use the GPL, so incase they wanna use your code they need to open source their project.) In short: don't mess with other folks in your position, just to mess with the big guys. Do something that allows you to work with them so you can do a more direct attack

@@MrMeow-dk2tx Then you can make it legible yourself by following good practices. But under no circumstances you should be FORCED to do it.