I would like to share a basic tutorial on reverse engineering related to Windows API calls. This tutorial will involve reviewing a substantial amount of
Author: rioasmara
I like Cyber Security, Security Architect, Red and Blue Teaming, Penetration Test and Malware Analysis
Forensic on Victim of CVE-2023-38146 and CVE-2023-28252
Just to continue from my previous post, I conducted an exercise involving the exploitation of a host specifically designed to contain two vulnerabilities: CVE-2023-38146 and
Attacking CVE-2023-38146 and CVE-2023-28252
I am doing exercise to ensure that I stay current with recent techniques and vulnerabilities in the field. I will provide insights from both the
Payload injection with NtCreateSection and NtMapViewOfSection
This is yet another technique for injecting payloads into memory. We recognize that the majority of the techniques used involve similar steps. Nowadays, EDR is
IR Analysis on PSEXEC and Persistence
As the incident responder, evaluating a security breach can be a stimulating task. It requires the ability to connect various pieces of information in order
Beacon Object Files (BOF)
Another simple tutorial tonight. CobaltStrike is very flexible C2 framework that allow the adversaries to be so creative in order to develop their arsenal. In
Cyber Security Architect | Red/Blue Teaming | Exploit/Malware Analysis 