Maybe we’re all a little black hat at times – you have to bend the rules to get things done sometimes.I thought of a couple kinds of shellcode – basically checking to see if the user is in a particular country or timezone.The concept of weaponizing shellcode is nothing new. This is just more fuel […]
Whaddup RE people? I have a treat especial just for you. I didn’t find 1 botnet host, I found 3. The first item on the menu is Linux based. This one with working clients across many platforms including MIPS, Motorola, and even ARM. For those of you living under a rock, botnets are networks of […]
Howdy dudey! I’m back with an update. A quickey mind you, but I’m out here posting real UPDATES for once. The Metasploit Framework expiration of shellcode commit that was never taken into master had me thinking – how come I never made POC code for Windows? Why the fuck not right? Well, let’s fucking do […]
What about Linux? Why all the love for Windows? What is this crap? The code for linux is a bit different in MSF. They use a modified ELF template that puts the shellcode directly into the end of the file which is built by nasm. Example: ; build with: ; nasm elf_x86_template.s -f bin -o […]
I had this thought speaking with fellow hacker friendos at 2600. Alternative ways to persist. Why not backdoor some popular programs? Sure why not? Today let’s scope in on backdooring some plugins for popular software. I will be covering a bunch of other programs, mainly stuff already on my computer. First plugin to backdoor will […]
Happy clucking new year everyone! People say i don’t “gave back” to the hacker community enough. That I’m “too cool” for school. Well I got a blog post for those people. What’s something that would be super annoying as a threat analyst? What if you had a piece of malware that only worked temporarily? Regardless […]
Hi! CactusCon 2017 went off like a hitch. Here is my code and slides from the con. Slides here. Code here. Hack on!
Hiyo! Defcon was awesome this year. It always gives me inspiration for things to blog about. That said, I want to go over something simple today – more VM detection. I’ll be hitting vmware because I have it, also OpenVZ and KVM because that’s what my old hosts worked on. In my humble opinion, the […]
Howdy! With that painful PIN crap behind me, I can finally be creative again. Today I wrote up a keylogger using C++ and DirectX. I normally dislike C++ because of the bloat, but DirectX and C don’t always play nicely. I’ve talked about keyloggers in the past, and even wrote one using traditional means. Traditionally, […]
Hi! Today I’m going to go over more on intel’s PIN, more on cheats, and less on detection since I already covered that. I feel like I’ve spent way too much time on this and it’s a huge turn off against my productivity. And of course, I commit to a talk and it HAS to […]