Hi Analyst, Today I would like to share information on how to analyze the API call in order to gather details information. Malware analyst requires
Get Windows Handles
Hi Guys, I am finally back after busy with my relocation back to home town. Today, I would like to share on how to get
Hide API Call Strings with Ordinals
Hi Reverser, Today, I would like to share abit of my research regarding how you hide your windows API calls from static analysis. Usually, When
Function Call with PUSH EAX and RETN
Hi Friends, Learning how malware creator develops their code is very inspiring because it has some tricks to ensure their application could bypass the security
Extract Payload from Memory
Hi Guys Today, I am going to share about the basic or simple technique for the malware analyst to extract payload or binary from the
Local Priv Escalation with SMBGhost Exploitation
Hi Guys, I would like to share my PoC to some EDR. I found it is interesting that all the product cannot detect SMBghost exploitation that
