+
Using YARA to detect Malware
Have you ever wondered how malware is detected? How do malware scanners work? How does Gmail know that the suspicious attachment you got was “dangerous”? The …
March 12, 2020
andreas_griffin Archive
+
Utilize PowerShell without executing the powershell.exe binary
In recent times, I have learned about techniques in developing modern malware. One of those techniques was to utilize PowerShell without executing the powershell.exe binary. After …
March 5, 2020
+
Living Off the Land Techniques
1. What is Living off the Land? The use of Living off the Land (LotL) tactics and tools by cyber criminals has been a growing trend …
February 27, 2020
+
The BlackArch Linux
Hi everyone, today I will introduce you to BlackArch OS and installation instructions. BlackArch is a penetration testing distribution based on Arch Linux that provides a …
February 21, 2020
+
FFSN – FAST-FLUX SERVICE NETWORKS
Fast-Flux is a DNS technique that involves frequent and rapid changing of the IP addresses associated with a Fully Qualified Domain Name (FQDN) by using a …
February 12, 2020
+
DGA – Domain Generation Algorithm
Usually, malicious code connects to the C&C server via a domain or IP address. DGA – Domain Generation Algorithm is a technique employed by the malware …
September 12, 2019
+
CUSTOMIZE FIRMWARE FOR XIAOMI CAMERAS
Today, I will show you how to customize firmware for some Yi camera families. This article references the yi-hack-v4 project on github. Link project: https://github.com/TheCrypt0/yi-hack-v4.git 1. …
July 21, 2019
+
Reversing with Radare2
Radare2 (also known as r2) is a complete framework for reverse-engineering and analyzing binaries; composed of a set of small utilities that can be used together …
April 1, 2019