Source Byte

✨ Windows Authentication - Credential Providers - Part 1. A primer on writing a credential provider in Windows. ✨ Windows Authentication - Credential Providers - Part 2. Sequence of calls to a credential provider in Windows.

Happy New Year 2025! Wishing you a year filled with joy, health, and success. 🎉🎄

cute 🥰

WTSRM - Writing Tiny Small Reliable Malware demo repository for my corresponding talk.

Unhooks all Windows Dlls with \KnownDlls\ No CRT dependencies Small size Low entropy Random string encryption key (thus no plaintext strings) API hashing Hook detection Walks around hooks for initial unhooking on ntdll

https://github.com/rad9800/WTSRM

NanoDump: How I Reinvented SafetyKatz to Dump LSASS with NanoDump https://xakep.ru/2024/11/13/lsass-nanodump/

Exploit Development: No Code Execution? No Problem! Living The Age of VBS, HVCI, and Kernel CFG 🔗 Link #binary #exploitation #windows #hvci ——— 🆔 @Infosec_Fortress

⭕️ Windows Drivers Reverse Engineering Methodology 🌐 Link 🌐 Github #malware_analysis #reverse_engineering @ch4mr0sh 🦹🏻‍♀

ATT&CKcon - Slides https://www.youtube.com/playlist?list=PLLGRmm150VfA8ahybY6XdDGtbCkoBNyyn

♣️Fancy Bear APT28 Adversary Simulation ⛓Blog : https://medium.com/@S3N4T0R/fancy-bear-apt28-adversary-simulation-e5b019668dfa ⭐️@APTANALYSIS

😈 [ Simon @TheCyberSimon ] Greetings Hackers on the web. For the hackers out there ricing their Linux and crushing @hackthebox_eu challenges, here’s a slick HackTheBox-themed i3 setup. Credit: BotnetBuddies Repo: 🔗 https://github.com/botnetbuddies/hackthebox-themes 🐥 [ tweet ]

💀 Hypervisor-enforced Paging Translation - The end of non data-driven Kernel Exploits.

The Kernel Hacker's Guide to the Galaxy Automating Exploit Engineering Workflows H2HC 2024 #binary #kernel #exploitation ——— 🆔 @Infosec_Fortress