Blog posts

• Starting dynamic analysis on a Windows x64 rootkit
• Assembly wrapping: a technique for anti-disassembly
• JSgen.py – bind and reverse shell JS code generator for SSJI in Node.js with filter bypass encodings
• Twofish Crypter with DNS (CName) password retrieval, x64 shellcode decryption, and execution
• Polymorphic and smaller versions of three shell-storm’s x64 shellcodes, including the smallest execve /bin/sh
• Custom x64 encoder with a basic polymorphic engine implementation
• x64 Egg hunting in Linux systems
• x86_64 reverse TCP bind shell with basic authentication on Linux systems
• x86_64 TCP bind shellcode with basic authentication on Linux systems
• Bypassing CSRF tokens with Python’s CGIHTTPServer to exploit SQLi