Keith J. Jones
Keith J. Jones
The following logic changed between v4.0 and v4.1 wrt how count and ints are promoted, affecting math and causing overflow errors like in the screen captures.  
I have some source code (closed right now - so I can't copy examples here unfortunately) that is 3.5k spicy lines. I notice my install/compile time for analyzers like this...
In the environment I use Spicy in, sometimes the machines are updated around the analyzers I'm working on. So imagine Zeek going from v4.1 to v4.1.1 after I install a...
Trying this: ``` public type Someunit = unit(arg1: string, arg2: string) { len: uint32; payload: bytes &size=self.len -> self.AnotherUnit; sink AnotherUnit(arg1, arg2); }; ``` gives an error such as this...
Kovter uses mshta and powershell and the monitor seems to be missing those processes in my tests. This sample (can be downloaded from VT) will execute the scripting engines: 15c237f6b74af2588b07912bf18e2734594251787871c9638104e4bf5de46589...
I tried to upload a 172MB file and I got this error: Error: cuckoo1: unable to upload malware to analysis machine: Is that an exception within cuckoo-modified? Or somewhere else?
I wrote this library: https://github.com/keithjjones/visualize_logs#cuckoo-json-reports It plots the JSON report. Check out the gallery there. Is this something you would like to include in the behavior reports? BTW - I'm...
Added an electronic true crime podcast.
Added drkeithjones's work.
The following errors are in Pandas, until they release a newer version than 0.19.1: ``` /REDACTED/Python3/lib/python3.6/site-packages/sklearn/preprocessing/label.py:151: DeprecationWarning: The truth value of an empty array is ambiguous. Returning False, but in...