Category: Malware Dev

Modifying Kernel data structures to hide processes and elevate privileges.

Executing arbitrary code inside a .NET process.

Creating an APK to gain remote access to an Android 14 device.

Using DLL’s as a persistence mechanism.

Setting up Obfuscator LLVM with Visual Studio 2022.

Converting shellcode to look like a series of IP addresses.

Replacing existing ROR13 function hash names in shellcode to evade signature based detection.

Executing Shellcode from the address space of known good DLL’s.

Executing Shellcode using function callbacks.

Creating a C++ DLL to modify a target applications behaviour.

Ways of making payloads a little less suspicious.

Using user-mode APC functions to execute code in remote processes.