Evading EDR : A Comprehensive Guide to Defeating Endpoint Detection Systems by Matt Hand, 2023

Jonathan Reiter is the Authors of sans SEC670 (Red Teaming Tools - Developing Windows Implants, Shellcode, Command and Control)
so don't miss this one !

https://www.sans.org/webcasts/intro-c-windows-devs/

--> LINK


@islemolecule_SOURCE

Use the free Microsoft bing's gpt with ida pro, to perform free analyzes!

https://github.com/p1ay8y3ar/idaBingGPTPlugin

#tools #reverse #idapro #ai

امیدوارم استفاده از blake3 به جای SHA256 بیشتر شود نه به خاطر اینکه به شدت امن است یا SHA256 که پایه آن SHA1 ضعیف است یاحتی توسط NSA ساخته شده، بلکه به این دلیل که مشترکا توسط مهندسین نرم‌افزار و رمزنگارها طراحی شده که Performance شدیدا بهتری دارد.
peergos.org/posts/blake3

VAHID NAMENI✍

Igor’s Tip of the Week #165: Defining floating-point data
hex-rays.com/blog/igors-tip-…

Analysis of Vanguard's guarded regions (Windows game anti-cheating systems internals)
Excellent blog post by @Xyrem256
reversing.info/posts/guarded…

IDA PRO archives

http://fckilfkscwusoopguhi7i6yg3l6tknaz7lrumvlhg5mvtxzxbbxlimid.onion/

Blinding EDR On Windows

#infosec #pentest #redteam

https://synzack.github.io/Blinding-EDR-On-Windows/

Reverse Engineering resources.

• Books;
• Courses;
• Practice;
• Hex Editors;
• Binary Format;
• Disassemblers;
• Binary Analysis;
• Bytecode Analysis;
• Import Reconstruction;
• Dynamic Analysis;
• Debugging;
• Mac Decrypt;
• Document Analysis;
• Scripting;
• Android;
• Yara;

https://github.com/wtsxDev/reverse-engineering

#reverse #engineering

‼️ Assembly Language for x86 Processors, 7th Edition

Slides deck on signal handling in Linux
courses.cms.caltech.edu/cs12…

Mockingjay revisisted - Process stomping and loading beacon with sRDI
naksyn.com/edr%20evasion/202…

Shit🫤

https://windows-internals.com/kaslr-leaks-restriction/