bypass
Encrypting Shellcode with XOR In C
· β˜• 1 min read · 🐱 thik
αž€αžΌαžŠαž“αžΈαž™αž€αž˜αŸ’αž˜ Shellcode αž‡αžΆαž˜αž½αž™ XOR αž€αŸ’αž“αž»αž„αž—αžΆαžŸαžΆαžš C
Encrypting Shellcode with XOR In C
Process Injection - Bypass AV/EDR with XOR - 0x01
· β˜• 3 min read · 🐱 thik
αž…αžΆαž€αŸ‹αž”αž‰αŸ’αž‡αžΌαž› Shellcode αž“αž·αž„ Bypass AV/EDR αžŠαŸ„αž™αž”αŸ’αžšαžΎαž”αŸ’αžšαžΆαžŸαŸ‹ XOR
Process Injection - Bypass AV/EDR with XOR - 0x01
1 Byte Changed Evading Antivirus
· β˜• 1 min read · 🐱 thik
Evading Antivirus αžŠαŸ„αž™αž”αŸ’αžšαžΎαž”αŸ’αžšαžΆαžŸαŸ‹αž”αž…αŸ’αž…αŸαž€αž‘αŸαžŸαž”αŸ’αžŠαžΌαžšαžαž˜αŸ’αž›αŸƒαž›αŸαžαž‚αŸ„αž›αž–αžΈαžš
1 Byte Changed Evading Antivirus
Impersonate SSL - MSF Bypass Detection
· β˜• 1 min read · 🐱 thik
αž€αŸ’αž›αŸ‚αž„αž”αž“αŸ’αž›αŸ† SSL αž“αž·αž„αž”αž‰αŸ’αž‡αŸ€αžŸαž–αžΈαž€αžΆαžšαž…αžΆαž”αŸ‹αžšαž”αžŸαŸ‹ AV
Impersonate SSL - MSF Bypass Detection
AppLocker Bypass - CMSTP
· β˜• 2 min read · 🐱 thik
DLL Bypass AppLocker αž‡αžΆαž˜αž½αž™αž―αž€αžŸαžΆαžš CMSTP
AppLocker Bypass - CMSTP
Bypass UAC DLL Method
· β˜• 5 min read · 🐱 thik
αž”αž„αŸ’αž€αžΎαžαžŸαŸ’αž‚αŸ’αžšαžΈαž” powershell αžŠαžΎαž˜αŸ’αž”αžΈ Bypass UAC αž‡αžΆαž˜αž½αž™αž―αž€αžŸαžΆαžš DLL
Bypass UAC DLL Method