Take a look into the depths of Windows kernels and reveal more than 60000 undocumented structures.

Hello everyone!
Welcome to "Malware Development in C" series! In today's video, I will be explaining you socket programming in C,
We shall first get started off by understanding basic workflow of a client and a server in socket programming and finally, we…

The Definitive Guide To Process Cloning on Windows - huntandhackett/process-cloning

Hi All, I am going to share a simple code to allow you to unhook AV engine from the NTDLL by overwritting dll loaded into the process with the fresh copy of the dll. The expectation of overwritting…

The long read: Bulgaria in the 1980s became known as the ‘virus factory’, where hundreds of malicious computer programs were unleashed to wreak havoc. But who was writing them, and why?

A reference of Windows API function calls, including functions for file operations, process management, memory management, thread management, dynamic-link library (DLL) management, synchronization,...

CMU Systems Programming course resources incl. course website, labs, schedule, & extra material. Books: "Computer Systems: A Programmer's Perspective" & &a...

Contribute to tmpout/awesome-elf development by creating an account on GitHub.

Introduction Some time ago, I accidentally came across some interesting behaviour in PE files while debugging an unrelated project. I noticed that setting the SectionAlignment value in the NT header to a value lower than the page size (4096) resulted in significant…

Hello everyone,

Repo contains POCs taken from the course Malware Development 1: The Basics and its succeeding Malware Development 2: Advanced Techniques - sufyandaredevil/MALWARE_DEV

IHkey is win32 ransomware built using VS 2022 + C++ 17 - mr3moe/IHkey

A collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger. - ThomasThelen/Anti-Debugging