Post by @jmeyer

Sign in
Sign up

EN

Log in Register

Modes

Overview Chat Timeline Communities Gallery Lists Friends Email Vault DNS VPN

Back to Timeline @jmeyer

Jérôme Meyer

@jmeyer@infosec.exchange

Security research at Nokia Deepfield (he/they). EN/FR posts | Fan of Crocker’s Rules, art, and the Oxford comma.

infosec.exchange

Jérôme Meyer

@jmeyer@infosec.exchange

Security research at Nokia Deepfield (he/they). EN/FR posts | Fan of Crocker’s Rules, art, and the Oxford comma.

infosec.exchange

@jmeyer@infosec.exchange · Mar 24, 2026

RE: @deepfield@infosec.exchange

The operator built triple-layer crypto, fast-flux DNS across 30+ ASes, biweekly C2 rotation — then shipped an unstripped debug build on port 8090, a couple of ports over from production. 300+ symbols, project name, internal module names, all right there in readelf.

Anyway here's the full writeup.

https://github.com/deepfield/public-research/blob/main/jackskid/report.md

#threatintel #ddos

View on infosec.exchange

20

0

14

Sign in to interact

Loading comments...

313k7r1n3

Company

About
Contact
FAQ

Legal

Terms of Service
Privacy Policy
VPN Policy

Email Settings

IMAP: mail.elektrine.com:993

POP3: pop3.elektrine.com:995

SMTP: mail.elektrine.com:465

SSL/TLS required

Support

support@elektrine.com
Report Security Issue

Connect

Tor Hidden Service

khav7sdajxu6om3arvglevskg2vwuy7luyjcwfwg6xnkd7qtskr2vhad.onion