Reverse Engineering resources.
• Books;
• Courses;
• Practice;
• Hex Editors;
• Binary Format;
• Disassemblers;
• Binary Analysis;
• Bytecode Analysis;
• Import Reconstruction;
• Dynamic Analysis;
• Debugging;
• Mac Decrypt;
• Document Analysis;
• Scripting;
• Android;
• Yara;
https://github.com/wtsxDev/reverse-engineering
#reverse #engineering
• Books;
• Courses;
• Practice;
• Hex Editors;
• Binary Format;
• Disassemblers;
• Binary Analysis;
• Bytecode Analysis;
• Import Reconstruction;
• Dynamic Analysis;
• Debugging;
• Mac Decrypt;
• Document Analysis;
• Scripting;
• Android;
• Yara;
https://github.com/wtsxDev/reverse-engineering
#reverse #engineering
GitHub
GitHub - wtsxDev/reverse-engineering: List of awesome reverse engineering resources
List of awesome reverse engineering resources. Contribute to wtsxDev/reverse-engineering development by creating an account on GitHub.
Assembly Language for x86 Processors.pdf
11.5 MB
‼️ Assembly Language for x86 Processors, 7th Edition
Slides deck on signal handling in Linux
courses.cms.caltech.edu/cs12…
courses.cms.caltech.edu/cs12…
Mockingjay revisisted - Process stomping and loading beacon with sRDI
naksyn.com/edr%20evasion/202…
naksyn.com/edr%20evasion/202…
Event Tracing for Windows (ETW) is crucial for modern EDR solutions. But what do you really know about its internal workings? Dive into ETW to discover useful attack targets and forensic information.
https://blog.trailofbits.com/2023/11/22/etw-internals-for-security-research-and-forensics/
@islemolecule_SOURCE
https://blog.trailofbits.com/2023/11/22/etw-internals-for-security-research-and-forensics/
@islemolecule_SOURCE
🎃2
Forwarded from vx-underground
Media is too big
VIEW IN TELEGRAM
Today EUROPOL in conjunction with the Ukraine National Police arrested individuals operating a ransomware group out of Ukraine. The group is believed to be behind the ransoming of 'over 1,000 servers'.
They released footage of some of the arrests
They released footage of some of the arrests
🤓1
#pwn #edu #guide
Understanding the Heap - a beautiful mess
https://jackfromeast.site/2023-01/understand-the-heap-a-beautiful-mess.html
See also heap exploitation series
#heap , #internals ,
Understanding the Heap - a beautiful mess
https://jackfromeast.site/2023-01/understand-the-heap-a-beautiful-mess.html
See also heap exploitation series
#heap , #internals ,
❤🔥4
Forwarded from Private Shizo
🔥Operator’s Guide to the Meterpreter BOFLoader
Recently, Kevin Clark and a few him friends decided to port him coworker Kevin Haubris‘ COFFLoader project to Metasploit. This new BOFLoader extension allows Beacon Object Files (BOFs) to be used from a Meterpreter session. This addition unlocks many new possibilities for Meterpreter and he think what, elevates Meterpreter back up to the status of a ‘modern C2 payload’. In this blog, Kevin Clark want to demonstrate uses of the BOFLoader and common errors an operator might make when using the BOFLoader for the first time.
These BOF examples barely scratch the surface of the BOFLoader’s capabilities. Hopefully this blog helps illustrate the possibilities of what can be done with BOFs. If it can be written in C, it can be a BOF.
Recently, Kevin Clark and a few him friends decided to port him coworker Kevin Haubris‘ COFFLoader project to Metasploit. This new BOFLoader extension allows Beacon Object Files (BOFs) to be used from a Meterpreter session. This addition unlocks many new possibilities for Meterpreter and he think what, elevates Meterpreter back up to the status of a ‘modern C2 payload’. In this blog, Kevin Clark want to demonstrate uses of the BOFLoader and common errors an operator might make when using the BOFLoader for the first time.
These BOF examples barely scratch the surface of the BOFLoader’s capabilities. Hopefully this blog helps illustrate the possibilities of what can be done with BOFs. If it can be written in C, it can be a BOF.
❤🔥2👍1