Source Byte – Telegram
Source Byte
@sourcebyte
7.75K subscribers
846 photos
73 videos
678 files
1.68K links
هشیار کسی باید کز عشق بپرهیزد
وین طبع که من دارم با عقل نیامیزد
Saadi Shirazi 187
Download Telegram
About
Blog
Apps
Platform
Join
Source Byte
7.75K subscribers
Source Byte
для чего нужен процесс dllhost.exe

https://nasbench.medium.com/what-is-the-dllhost-exe-process-actually-running-ef9fe4c19c08
Medium
What is the “DLLHOST.EXE” Process Actually Running
A Deep Dive Into “DLLHOST.EXE”
550 views‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌$ᴘ3ᴅʏʟ1
Source Byte
Malware Development for Dummies.pdf
804.8 KB
600 views‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌$ᴘ3ᴅʏʟ1
Source Byte
Please open Telegram to view this post
VIEW IN TELEGRAM
‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌$ᴘ3ᴅʏʟ1
Source Byte
🌐 EDRs Hooks List
GitHub
GitHub - Mr-Un1k0d3r/EDRs
Contribute to Mr-Un1k0d3r/EDRs development by creating an account on GitHub.
571 views‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌$ᴘ3ᴅʏʟ1
Source Byte
⭕️ Kernel Callback Functions :

🌐 Link
Undocumented
Codemachine
CodeMachine - Article - Kernel Callback Functions
Comprehensive list of documented and undocumented APIs available in the Windows kernel to register callback routines.
467 views‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌$ᴘ3ᴅʏʟ1
Source Byte
⭕️ More callbacks

🌐 Medium Link

🌐 Youtube Link
Medium
Yes, More Callbacks — The Kernel Extension Mechanism
Recently I had to write a kernel-mode driver. This has made a lot of people very angry and been widely regarded as a bad move. (Douglas…
439 views‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌$ᴘ3ᴅʏʟ1
Source Byte
Malware development series :

🌐 Link

Use links from his twitter
Twitter
aas
Malware development serie: • 0xpat.github.io/Malware_develo… • 0xpat.github.io/Malware_develo… • 0xpat.github.io/Malware_develo… • 0xpat.github.io/Malware_develo… • 0xpat.github.io/Malware_develo… • 0xpat.github.io/Malware_develo… • 0xpat.github.io/Malware_develo……
❤‍🔥1
448 views‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌$ᴘ3ᴅʏʟ1, edited  
Source Byte
Tools and PoCs for Windows syscall investigation.

🌐 Link
GitHub
GitHub - daem0nc0re/AtomicSyscall: Tools and PoCs for Windows syscall investigation.
Tools and PoCs for Windows syscall investigation. Contribute to daem0nc0re/AtomicSyscall development by creating an account on GitHub.
👍1
482 views‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌$ᴘ3ᴅʏʟ1
Source Byte
Great tutorial on Linux kernel exploitation using CVE-2017-11176 as example
Credits Nicolas Fabretti

Part 1: blog.lexfo.fr/cve-2017-11176

Part 2: blog.lexfo.fr/cve-2017-11176

Part 3: blog.lexfo.fr/cve-2017-11176

Part 4: blog.lexfo.fr/cve-2017-11176
557 viewsAnastasia 🐞
Source Byte
RT @irina_tech_tips: Your Social Media Fingerprint

Old and simple online tool that shows which sites you are currently authorised on.
robinlinus.github.io/socialm
532 viewsAnastasia 🐞
Source Byte
Collection of guides/resources/tutorials about (linux server) security
Worth a reading!

github.com/imthenachoman/How
536 viewsAnastasia 🐞
Source Byte
Unmasking AsyncRAT New Infection Chain mcafee.com/blogs/other-blogs
598 viewsAnastasia 🐞
Source Byte
Source Byte pinned a photo
Source Byte
https://maldbg.com/ipstorm-golang-malware-windows
❤‍🔥1
673 views‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌$ᴘ3ᴅʏʟ1
Source Byte
Source Byte
IDA Pro 8.3 installer (Was find on virus total) (it's password protected) Source : pwn3rzs Wait for them to leak it😕🫶 https://news.1rj.ru/str/source_chat/1504
Finally:

IDA 8.3 + keygen

https://news.1rj.ru/str/source_chat/1677
❤‍🔥3👍3
752 viewsAnastasia 🐞, edited  
Source Byte
Source Byte pinned «Finally: IDA 8.3 + keygen https://news.1rj.ru/str/source_chat/1677»
Source Byte
IDA SDK & TOOLS
8.3

Thanks to H1gh i4nd4r 👌

https://news.1rj.ru/str/source_chat/1661
🎃2
681 viewsAnastasia 🐞, edited  
Source Byte
Evading EDR (Early Access 2023) (Matt Hand).pdf
4.9 MB
Evading EDR : A Comprehensive Guide to Defeating Endpoint Detection Systems by Matt Hand, 2023
👍1
834 views‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌$ᴘ3ᴅʏʟ1
Source Byte
Jonathan Reiter is the Authors of sans SEC670 (Red Teaming Tools - Developing Windows Implants, Shellcode, Command and Control)
so don't miss this one !

https://www.sans.org/webcasts/intro-c-windows-devs/

--> LINK


@islemolecule_SOURCE
👍3🤓2
858 viewsAnastasia 🐞, edited  
Source Byte
Use the free Microsoft bing's gpt with ida pro, to perform free analyzes!

https://github.com/p1ay8y3ar/idaBingGPTPlugin

#tools #reverse #idapro #ai
🎃3
689 views‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌$ᴘ3ᴅʏʟ1
Source Byte
امیدوارم استفاده از blake3 به جای SHA256 بیشتر شود نه به خاطر اینکه به شدت امن است یا SHA256 که پایه آن SHA1 ضعیف است یاحتی توسط NSA ساخته شده، بلکه به این دلیل که مشترکا توسط مهندسین نرم‌افزار و رمزنگارها طراحی شده که Performance شدیدا بهتری دارد.
peergos.org/posts/blake3

VAHID NAMENI
604 viewsAnastasia 🐞, edited