ABOUT

VISIT SENTINELONE.COM

Security Research

Keep Malware Off Your Disk With SentinelOnes IDA Pro Memory Loader Plugin 2

Security Research

Keep Malware Off Your Disk With SentinelOne’s IDA Pro Memory Loader Plugin

Roman Rusetsky / March 25, 2021

Security researchers – don’t infect your own device! Now you can analyze malware samples in memory using SentinelOne’s Memory Loader plugin for IDA Pro.

Top 15 Essential Malware Analysis Tools 4

Security Research

Top 15 Essential Malware Analysis Tools

Marco Figueroa / March 11, 2021

Get your malware analysis toolkit up-to-speed! From disassemblers and debuggers to hex editors and SSL interception tools, you’ll find them all here.

A Guide To Ghidra Scripting Development For Malware Researchers 3

Security Research

A Guide to Ghidra Scripting Development for Malware Researchers

Marco Figueroa / March 3, 2021

Automation is the key to becoming a more effective malware analyst, and Ghidra scripting is an essential tool in your arsenal. Get started here!

20 Common Tools Techniques Used By MacOS Threat Actors Malware 6

Security Research

20 Common Tools & Techniques Used by macOS Threat Actors & Malware

Phil Stokes / February 16, 2021

Threat hunting on macOS? These are the tools malware most often leverages, with ITW examples, MITRE behavioral indicators and links to further research.

CVE 2021 24092 Uncovering A 12 Year Old Privilege Escalation Vulnerability In A Windows Defender Driver 6

Security Research

CVE-2021-24092: 12 Years in Hiding – A Privilege Escalation Vulnerability in Windows Defender

Kasif Dekel / February 10, 2021

Windows Defender has contained an elevation of privilege vulnerability since at least 2009. Learn more about SentinelOne’s discovery, CVE-2021-24092, here.

FADE DEAD Adventures In Reversing Malicious Run Only AppleScripts 2

Security Research

FADE DEAD | Adventures in Reversing Malicious Run-Only AppleScripts

Phil Stokes / January 11, 2021

We show how to statically reverse run-only AppleScripts for the first time, and in the process reveal new IoCs of a long-running macOS Cryptominer campaign.

Building A Custom Malware Analysis Lab Environment 2

Security Research

Building a Custom Malware Analysis Lab Environment

Marco Figueroa / January 4, 2021

Building the right malware analysis environment is the first step for every researcher. We show how it’s done and offer some free custom tools for your use.

Introducing SentinelOnes Ghidra SRE Plugin For VirusTotal 4

Security Research

Introducing SentinelOne’s Ghidra Plugin for VirusTotal

Kasif Dekel / December 14, 2020

Ghidra users can now enjoy the same (and more!) benefits available in IDA Pro from VirusTotal’s VTGrep plugin with this open source plugin from SentinelLabs.

Resourceful MacOS Malware Hides In Named Fork 5

Security Research

Resourceful macOS Malware Hides in Named Fork

Phil Stokes / November 5, 2020

Threat actors targeting macOS are deploying a new trick to hide payloads and avoid detection thanks to an old technology: the named resource fork.

Moving From Dynamic Emulation Of UEFI Modules To Coverage Guided Fuzzing Of UEFI Firmware 1

Security Research

Moving From Dynamic Emulation of UEFI Modules To Coverage-Guided Fuzzing of UEFI Firmware

Assaf Carlsbad / November 2, 2020

In Part 3 of our series on emulating, debugging and fuzzing UEFI modules, we provide a step-by-step guide to making a coverage-guided fuzzer for UEFI code.

1 … 3 4 5 6 7

Next

Search

Search ...

Sign Up

Get notified when we post new content.

Thanks! Keep an eye out for new content!

Recent Posts

Silent Brothers | Ollama Hosts Form Anonymous AI Network Beyond Platform Guardrails
January 29, 2026
LABScon25 Replay | How to Bug Hotel Rooms v2.0
January 21, 2026
LLMs in the SOC (Part 1) | Why Benchmarks Fail Security Operations Teams
January 20, 2026

Labs Categories

Crimeware
Security Research
Advanced Persistent Threat
LABScon
Adversary
Security & Intelligence

SentinelLabs

In the era of interconnectivity, when markets, geographies, and jurisdictions merge in the melting pot of the digital domain, the perils of the threat ecosystem become unparalleled. Crimeware families achieve an unparalleled level of technical sophistication, APT groups are competing in fully-fledged cyber warfare, while once decentralized and scattered threat actors are forming adamant alliances of operating as elite corporate espionage teams.

Recent Posts

Silent Brothers | Ollama Hosts Form Anonymous AI Network Beyond Platform Guardrails
January 29, 2026
LABScon25 Replay | How to Bug Hotel Rooms v2.0
January 21, 2026
LLMs in the SOC (Part 1) | Why Benchmarks Fail Security Operations Teams
January 20, 2026

Sign Up

Get notified when we post new content.

Thanks! Keep an eye out for new content!

Twitter
LinkedIn

©2026 SentinelOne, All Rights Reserved.