Introduction Hello hackers! Today we’ll be creating a CLI tool to analyze and extract PE files information as much as possible using github.com/Binject/debug/pe package. Explanation Parsing P...

Introduction Hello my friends! This post will be a little bit shorter than usual but don’t worry because it will teach you a simple and well known persistence technique. Explanation A lot of ...

Introduction Hello hackers! In this post we’ll discuss some of the main anti-sandboxing tricks and techniques to avoid malware analysis and sandboxing. Then we’ll write a Golang program based o...

Introduction Hello hackers! Today we’re going to see how real malware protect themselves from being analyzed using a technique called Api Hashing. Explanation First of all we should know what...

Introduction Hello dear hackers! Today we’ll dump LSASS.EXE process memory to obtain credentials and we also will be using some evasion techniques. Inspired by Dumpert (an awesome tool) Explan...

Introduction Hello dear hackers! Today we’re gonna see an effective technique to mantain access in Windows systems during red team operations just by modifying a registry key which interacts wi...

Introduction Hello hackers! I’m D3Ext and today we’ll learn an advanced shellcode injection technique used by Lazarus group which uses UuidFromStringA API call Explanation In this demo we’ll ...

Introduction Hello hackers! Today we’re gonna see a simple malware development technique, Shellcode injection via CreateRemoteThread in Golang. The most complex malwares use different shellcode...

Introduction Hello friends! Today we’ll see how we can use Golang internal functions from syscall and golang.org/x/sys/windows packages to call Windows API. Other languages like C o C++ are spe...

Introduction Hi there! In this post I am going to explain how we can bypass common AVs (antivirus) in different ways to help you during Red Team Operations and more. I recommend you to have a good...