-
PE injection explained
Injecting code into other process memory is generally limited to shellcode, either to hide the shellcode from Antivirus or to inject a DLL. The method described here is more...Continue reading →
13 April 2014 17 messages -
Hide meterpreter shellcode in executable
Have you ever wanted to put meterpreter in an exe file but were annoyed by antivirus detecting it? Here is a way to bypass AV detection by applying the method described in...Continue reading →
11 March 2014 1 messages -
Code segment encryption
Partial encryption of a binary and self-decryption at runtime. This article is based on the cryptor described in Bill Blundens’ "The Rootkit ARSENAL"...Continue reading →
2 March 2014 3 messages
-
Bypass Defender and other thoughts on Unicode RTLO attacks
I have been looking a bit into Unicode and Right-To-Left-Override phishing attacks lately. Mainly because I noticed that Windows Defender was detecting payloads generated with the "—unicode-rtlo"... Continue reading →
25 May 2020 0 messages
Search
Most popular
1. Fun combining anti-debugging and anti-disassembly tricks
2. VNC to access Kali Linux on Raspberry Pi
4. Yet another sdclt UAC bypass
5 random articles
1. Bypass Antivirus Dynamic Analysis
2. Implement hash service using JCE
3. Create a daily system-update script
5. TVT DVR/CCTV webshell exploit
Sponsor
If you appreciate my work, you may help or reward with a contribution :)
