You are here : Home » Learning security » Operating Systems » Windows

Windows

Microsoft windows represents the vast majority of home PC and a big number of servers as well.
Because of its widespread and the complexity of its code (and probably the complexity of the coding processes...) a lot of vulnerabilities are discovered and exploited on this O.S.
Windows is the main target of virus and malwares. Bankers, ransomers,ID stealers, D.O.S and spam bots, are the kind of malwares used by criminal organization to make millions of dollars. And nearly all this malwares target the Windows system.
This section is focusing on threats targeting the Windows system and the security countermeasures.

MSDT DLL Hijack UAC bypass UAC Bypass via DLL hijacking of Microsoft Support Diagnostic Tool (MSDT). The UAC bypass method described here is (...)
Wednesday 2 February 2022, by Emeric Nasi
Hide HTA window for RedTeam Short post to explain how to create a stealthy HTA file running without any window or taskbar mention. This can be (...)
Thursday 15 July 2021, by Emeric Nasi
Bypass Windows Defender Attack Surface Reduction A redteam oriented study of Windows Defender Exploit Guard Attack Surface Reduction. Analysis of several rules, (...)
Sunday 24 February 2019, by Emeric Nasi
Yet another sdclt UAC bypass Fileless UAC bypass via COM hijack using sdtlc.exe auto-elevated process.
Wednesday 23 January 2019, by Emeric Nasi
Advanced USB key phishing How to create "trojanized" USB key for redteam/social engineering using ADS, shortcuts, HTA, macro_pack, etc. Drop (...)
Saturday 23 June 2018, by Emeric Nasi
Hacking around HTA files How to hide Visual Basic Scripts HTA in other files and generate self playing HTA files without the .hta (...)
Wednesday 7 February 2018, by Emeric Nasi
String encryption using macro and cryptor I’ve found out a lot of people want to be able to encrypt string in a C or C++ software. There are a lot of methods (...)
Sunday 29 June 2014, by Emeric Nasi
Fun combining anti-debugging and anti-disassembly tricks Short article presenting basic anti-debug and anti-disassembly techniques and a way to combine them to make (...)
Saturday 17 May 2014, by Emeric Nasi
PE injection explained Injecting code into other process memory is generally limited to shellcode, either to hide the shellcode from (...)
Sunday 13 April 2014, by Emeric Nasi
Hide meterpreter shellcode in executable Have you ever wanted to put meterpreter in an exe file but were annoyed by antivirus detecting it? Here is a way to (...)
Tuesday 11 March 2014, by Emeric Nasi

0 | 10

Subsections

Search

Most popular

1.  Digging passwords in Linux swap

2.  Launch shellcodes and bypass Antivirus using MacroPack Pro VBA payloads

3.  Bypass Defender and other thoughts on Unicode RTLO attacks

4.  Hacking around HTA files

5.  Code Injection - Weaponize GhostWriting Injection

5 random articles

1.  Hide meterpreter shellcode in executable

2.  cve-2014-3631 Linux Kernel D.O.S POC

3.  Advanced USB key phishing

4.  Linux security using a limited group (PAM modules)

5.  Glyptodon-1.2-b

Sponsor

If you appreciate my work, you may help or reward with a contribution :)

Most recent articles

1 | 2 | 3 | 4 | 5

Recent comments

1 | 2 | 3 | 4 | 5

Latest news

2010-2023 Sevagas
Archives | | Contact

RSS 2.0 twitter linkedin facebook