-
Recent Posts
- Solving the Shabak’s Airplane challenge – Task 3
- Solving the Shabak’s Airplane challenge – Tasks 1 and 2
- Starting with Windows Kernel Exploitation – part 3 – stealing the Access Token
- Starting with Windows Kernel Exploitation – part 2 – getting familiar with HackSys Extreme Vulnerable Driver
- Starting with Windows Kernel Exploitation – part 1 – setting up the lab
Archives
- June 2017 (4)
- May 2017 (2)
- December 2016 (1)
- November 2016 (1)
- July 2016 (3)
- June 2016 (1)
- April 2016 (1)
- March 2016 (2)
- February 2016 (1)
- October 2014 (1)
- March 2014 (1)
- February 2014 (2)
- January 2014 (1)
- November 2013 (1)
- October 2013 (1)
- September 2013 (1)
- August 2013 (1)
- July 2013 (3)
- July 2012 (1)
- May 2012 (1)
- April 2012 (1)
Categories
- CONfidence (3)
- CrackMe (7)
- Malware (11)
- Malware Decryptor (5)
- PE-bear (10)
- Tools (6)
- Tutorial (8)
- Uncategorized (1)
- WKE (3)
Blog Stats
- 143,158 hits
All my works included here are licensed under:
Monthly Archives: March 2016
Petya key decoder
CODE Sourcecodes of my applications related to recovery from Petya attacks Key decoder for multiple Petyas based on Janus’ masterkey Petya Green – app for brutforce attack on Green Petya’s key multicore version by procrash Red Petya key recovery based … Continue reading
Posted in Malware, Malware Decryptor, Tools
19 Comments
Introduction to ADS – Alternate Data Streams
Sometimes during automated malware analysis in a sandbox (i.e. Cuckoo), we can get in the report the following information: “creating alternate data streams”. It is related with an interesting feature of NTFS file system, that can be used for hidden … Continue reading
Posted in Malware, Uncategorized
Leave a comment
