You are here : Home » Learning security » Operating Systems » Windows

Windows

Microsoft windows represents the vast majority of home PC and a big number of servers as well.
Because of its widespread and the complexity of its code (and probably the complexity of the coding processes...) a lot of vulnerabilities are discovered and exploited on this O.S.
Windows is the main target of virus and malwares. Bankers, ransomers,ID stealers, D.O.S and spam bots, are the kind of malwares used by criminal organization to make millions of dollars. And nearly all this malwares target the Windows system.
This section is focusing on threats targeting the Windows system and the security countermeasures.

Bypass Windows Defender Attack Surface Reduction A redteam oriented study of Windows Defender Exploit Guard Attack Surface Reduction. Analysis of several rules, (...)
Sunday 24 February 2019, by Emeric Nasi
Yet another sdclt UAC bypass Fileless UAC bypass via COM hijack using sdtlc.exe auto-elevated process.
Wednesday 23 January 2019, by Emeric Nasi
Advanced USB key phishing How to create "trojanized" USB key for redteam/social engineering using ADS, shortcuts, HTA, macro_pack, etc. Drop (...)
Saturday 23 June 2018, by Emeric Nasi
Hacking around HTA files How to hide Visual Basic Scripts HTA in other files and generate self playing HTA files without the .hta extension. (...)
Wednesday 7 February 2018, by Emeric Nasi
String encryption using macro and cryptor I’ve found out a lot of people want to be able to encrypt string in a C or C++ software. There are a lot of methods (...)
Sunday 29 June 2014, by Emeric Nasi
Fun combining anti-debugging and anti-disassembly tricks Short article presenting basic anti-debug and anti-disassembly techniques and a way to combine them to make (...)
Saturday 17 May 2014, by Emeric Nasi
PE injection explained Injecting code into other process memory is generally limited to shellcode, either to hide the shellcode from (...)
Sunday 13 April 2014, by Emeric Nasi
Hide meterpreter shellcode in executable Have you ever wanted to put meterpreter in an exe file but were annoyed by antivirus detecting it? Here is a way to (...)
Tuesday 11 March 2014, by Emeric Nasi
Code segment encryption Partial encryption of a binary and self-decryption at runtime. This article is based on the cryptor described in (...)
Sunday 2 March 2014, by Emeric Nasi
Hide files using SSDT hooking ZwQueryDirectoryFile replacement SSDT hook to hide files on Windows system. This code is an evolution of the one (...)
Wednesday 3 August 2011, by Emeric Nasi

Subsections

Search

Most popular

1.  VNC to access Kali Linux on Raspberry Pi

2.  Hacking around HTA files

3.  Bypass Defender and other thoughts on Unicode RTLO attacks

4.  PE injection explained

5.  Launch shellcodes and bypass Antivirus using MacroPack Pro VBA payloads

5 random articles

1.  Code Injection - Process PE Injection Basics

2.  Iptables firewall versus nmap and hping3

3.  POSIX file capabilities, the dark side

4.  XSS : Get string without quote

5.  Create a daily system-update script

Sponsor

If you appreciate my work, you may help or reward with a contribution :)

Most recent articles

1 | 2 | 3 | 4 | 5

Recent comments

1 | 2 | 3 | 4 | 5

Latest news

2010-2021 Sevagas
Archives | | Contact

RSS 2.0 twitter linkedin facebook