I would like to share a basic tutorial on reverse engineering related to Windows API calls. This tutorial will involve reviewing a substantial amount of
Category: Reverse Engineering
Forensic on Victim of CVE-2023-38146 and CVE-2023-28252
Just to continue from my previous post, I conducted an exercise involving the exploitation of a host specifically designed to contain two vulnerabilities: CVE-2023-38146 and
Payload injection with NtCreateSection and NtMapViewOfSection
This is yet another technique for injecting payloads into memory. We recognize that the majority of the techniques used involve similar steps. Nowadays, EDR is
IR Analysis on PSEXEC and Persistence
As the incident responder, evaluating a security breach can be a stimulating task. It requires the ability to connect various pieces of information in order
Python Extracting Malware Configuration
My Friends, Just a quick simple and very basic tutorial on how to create an automation to extract malware configuration from PE file. I made
Sandbox Evasion with CreateDXGIFactory
Hi Malware Developer Looking at some malware sample arround, I would like to share one of many ways on how malware identify its environment in
Cyber Security Architect | Red/Blue Teaming | Exploit/Malware Analysis 