Arti Karahoda

Cyber Security & Data Protection


Research Articles

Weevely is a powerful polymorphic backdoor used in web post-explonation phases; this tool is written in Python and it generates a small obfuscated PHP shell which is then delievered to the targeted web server. The article will lay out it’s communication chain and encryption scheme in order to assist blue team operators during a DFIR process.

Xombie APK is an Android spyware which works with the latest SDK version (API level 29). This research post will outline some functionalities that can be used for such purposes and for educational use only. The application is part of a larger project—SMS Xombie—which makes use of the GSM network to command and control infected devices.

This article will demonstrate a new vector of attack using Blockchain tools, commencing from an initial CMD injection through Ethereum’s RPC interface, SSH keys retrieval using the IPFS protocol, privilege escalation by stealing funds from a smart contract, and file system forensics in the slack space storage.

In this article, we will make a general overview on how Privacy & Data Protection are defined in Kosovo, as well as an outline on data protection legislation throughout the years, key legal points, and the supervistory authority along its court cases.

CTF Writeups

$ whoami

About me: I am a cybersecurity specialist—from Prishtina, Kosovo—working in the field of information security and data protection. I have a computer engineering background from studies and my key technical skills include network and mobile security, digital forensics, exploit development and process automation using Python & C++.

Hack the Box: HTB is an online penetration testing platform with more than 200,000 security researchers worldwide. My peak rank was the fourth (4th) position globally: