Maldev Academy Malware Development |
||
|
Name |
DOWNLOAD
Copy Link
Trouble downloading? see How To |
|
|
Total Size |
246.3 MB |
|
|
Total Files |
2325 |
|
|
Last Seen |
2025-07-19 23:51 |
|
|
Hash |
44CF2381CF24BC9CD3DBE3C1C28DDE3375BA6BDA |
|
/MalDev/ |
|
|
|
67.8 KB |
|
|
72.9 KB |
|
|
479.1 KB |
|
|
268.5 KB |
|
|
292.6 KB |
|
|
694.5 KB |
|
|
251.8 KB |
|
|
290.1 KB |
|
|
556.7 KB |
|
|
151.9 KB |
|
|
158.4 KB |
|
|
180.3 KB |
|
|
3.9 KB |
|
|
1.1 MB |
|
|
411.0 KB |
|
|
3.9 KB |
|
|
1.6 MB |
|
|
5.4 KB |
|
|
45.7 KB |
|
|
106.5 KB |
|
|
3.5 KB |
|
|
334.9 KB |
|
|
11.4 KB |
|
|
18.3 KB |
|
|
1.4 MB |
|
|
895.1 KB |
|
|
17.3 KB |
|
|
19.2 KB |
|
|
708.2 KB |
|
|
9.9 KB |
|
|
351.3 KB |
|
|
445.4 KB |
|
|
10.2 KB |
|
|
14.7 KB |
|
|
208.5 KB |
|
|
223.2 KB |
|
|
11.0 KB |
|
|
304.0 KB |
|
|
6.6 KB |
|
|
968.3 KB |
|
|
5.8 KB |
|
|
748.1 KB |
|
|
8.2 KB |
|
|
6.8 KB |
|
|
1.1 MB |
|
|
490.3 KB |
|
|
4.8 KB |
|
|
874.4 KB |
|
|
5.6 KB |
|
|
271.4 KB |
|
|
4.7 KB |
|
|
352.6 KB |
|
|
10.8 KB |
|
|
326.1 KB |
|
|
5.7 KB |
|
|
316.7 KB |
|
|
6.3 KB |
|
|
369.9 KB |
|
|
5.5 KB |
|
|
307.5 KB |
|
|
6.2 KB |
|
|
345.3 KB |
|
|
417.7 KB |
|
|
5.0 KB |
|
|
346.0 KB |
|
|
5.7 KB |
|
|
187.5 KB |
|
|
18.5 KB |
|
|
443.1 KB |
|
|
5.1 KB |
|
|
631.0 KB |
|
|
6.2 KB |
|
|
710.6 KB |
|
|
9.2 KB |
|
|
737.4 KB |
|
|
11.2 KB |
|
|
227.0 KB |
|
|
12.7 KB |
|
|
5.2 KB |
|
|
428.4 KB |
|
|
5.6 KB |
|
|
500.3 KB |
|
|
6.0 KB |
|
|
394.2 KB |
|
|
365.9 KB |
|
|
8.2 KB |
|
|
425.5 KB |
|
|
13.7 KB |
|
|
143.8 KB |
|
|
4.5 KB |
|
|
538.7 KB |
|
|
7.6 KB |
|
|
501.8 KB |
|
|
5.5 KB |
|
|
318.2 KB |
|
|
180.5 KB |
|
|
5.4 KB |
|
|
481.5 KB |
|
|
87.1 KB |
|
|
503.5 KB |
|
|
814.3 KB |
|
|
495.4 KB |
|
|
673.3 KB |
|
|
794.5 KB |
|
|
5.2 KB |
|
|
465.2 KB |
|
|
4.5 KB |
|
|
319.2 KB |
|
|
32.2 KB |
|
|
331.6 KB |
|
|
423.6 KB |
|
|
300.9 KB |
|
|
1.4 MB |
|
|
25.5 KB |
|
|
1.6 MB |
|
|
26.6 KB |
|
|
841.3 KB |
|
|
24.3 KB |
|
|
61.7 KB |
|
|
546.9 KB |
|
|
10.0 KB |
|
|
446.4 KB |
|
|
4.3 KB |
|
|
429.8 KB |
|
|
9.2 KB |
|
74-Anti-Virtual Environments - Multiple Delay Execution Techniques.pdf |
280.2 KB |
|
|
4.8 KB |
|
|
297.5 KB |
|
|
4.9 KB |
|
|
803.6 KB |
|
|
0.9 KB |
|
|
388.9 KB |
|
|
4.4 KB |
|
|
15.1 KB |
|
|
873.6 KB |
|
|
1.1 MB |
|
|
317.2 KB |
|
|
4.4 KB |
|
|
2.9 MB |
|
|
116.0 KB |
|
|
562.4 KB |
|
|
317.7 KB |
|
|
5.9 KB |
|
|
1.7 MB |
|
|
5.3 KB |
|
|
752.8 KB |
|
|
908.0 KB |
|
|
5.8 KB |
|
|
1.1 MB |
|
|
6.2 KB |
|
|
17.7 KB |
|
|
2.2 MB |
|
|
17.2 KB |
|
|
1.5 MB |
|
|
647.3 KB |
|
|
4.8 KB |
|
|
1.5 MB |
|
|
9.7 KB |
|
|
2.1 KB |
|
|
53.2 MB |
|
|
13.5 KB |
|
|
11.2 KB |
|
|
9.0 KB |
|
|
5.3 KB |
|
|
12.4 KB |
|
|
281.3 KB |
|
|
8.4 KB |
|
|
21.1 KB |
|
|
21.5 KB |
|
|
14.0 KB |
|
|
4.2 KB |
|
|
4.7 KB |
|
|
21.0 KB |
|
|
5.6 KB |
|
|
5.6 KB |
|
|
21.1 KB |
|
|
6.1 KB |
|
|
49.9 KB |
|
|
95.2 KB |
|
|
885.7 KB |
|
|
1.8 MB |
|
|
161.1 KB |
|
|
21.4 KB |
|
|
18.6 KB |
|
|
11.9 KB |
|
|
49.0 KB |
|
|
4.2 KB |
|
|
8.2 KB |
|
|
7.1 KB |
|
|
13.9 KB |
|
|
15.6 KB |
|
|
7.2 KB |
|
/Maldev Modules/ |
|
|
|
17.8 KB |
|
|
21.9 KB |
|
|
19.7 KB |
|
|
20.8 KB |
|
|
20.0 KB |
|
|
25.9 KB |
|
|
33.1 KB |
|
|
35.7 KB |
|
|
29.9 KB |
|
|
24.2 KB |
|
|
28.4 KB |
|
|
20.0 KB |
|
|
3.9 KB |
|
|
23.6 KB |
|
|
19.1 KB |
|
|
3.9 KB |
|
|
22.3 KB |
|
|
5.4 KB |
|
|
17.5 KB |
|
|
18.8 KB |
|
|
3.8 KB |
|
|
27.5 KB |
|
|
11.4 KB |
|
|
18.7 KB |
|
|
50.3 KB |
|
|
17.5 KB |
|
|
17.8 KB |
|
|
19.2 KB |
|
|
32.4 KB |
|
|
9.9 KB |
|
|
21.0 KB |
|
|
24.6 KB |
|
|
10.2 KB |
|
|
14.7 KB |
|
|
17.9 KB |
|
|
17.4 KB |
|
|
11.0 KB |
|
|
19.4 KB |
|
|
6.6 KB |
|
|
32.8 KB |
|
|
5.8 KB |
|
|
37.4 KB |
|
|
8.2 KB |
|
|
6.8 KB |
|
|
24.5 KB |
|
|
32.6 KB |
|
|
4.8 KB |
|
|
30.2 KB |
|
|
5.9 KB |
|
|
20.2 KB |
|
|
4.7 KB |
|
|
24.9 KB |
|
|
10.8 KB |
|
|
29.5 KB |
|
|
5.7 KB |
|
|
28.7 KB |
|
|
6.3 KB |
|
|
28.1 KB |
|
|
5.5 KB |
|
|
25.2 KB |
|
|
6.2 KB |
|
|
19.9 KB |
|
|
24.4 KB |
|
|
5.3 KB |
|
|
22.0 KB |
|
|
5.7 KB |
|
|
23.6 KB |
|
|
18.5 KB |
|
|
24.9 KB |
|
|
5.1 KB |
|
|
24.3 KB |
|
|
6.2 KB |
|
|
23.5 KB |
|
|
9.2 KB |
|
|
21.5 KB |
|
|
11.2 KB |
|
|
21.6 KB |
|
|
12.7 KB |
|
|
5.2 KB |
|
|
29.6 KB |
|
|
5.6 KB |
|
|
30.3 KB |
|
|
6.0 KB |
|
|
18.9 KB |
|
|
37.0 KB |
|
|
8.2 KB |
|
|
24.9 KB |
|
|
13.7 KB |
|
|
17.2 KB |
|
|
4.5 KB |
|
|
30.6 KB |
|
|
7.6 KB |
|
|
34.6 KB |
|
|
5.5 KB |
|
|
25.3 KB |
|
|
21.6 KB |
|
|
5.4 KB |
|
|
28.7 KB |
|
|
19.2 KB |
|
|
33.7 KB |
|
|
814.3 KB |
|
|
24.4 KB |
|
|
673.3 KB |
|
|
29.0 KB |
|
|
5.2 KB |
|
|
26.5 KB |
|
|
4.5 KB |
|
|
23.6 KB |
|
|
32.2 KB |
|
|
25.9 KB |
|
|
34.4 KB |
|
|
29.0 KB |
|
|
44.5 KB |
|
|
25.5 KB |
|
|
49.5 KB |
|
|
26.6 KB |
|
|
31.9 KB |
|
|
24.3 KB |
|
|
18.6 KB |
|
|
38.5 KB |
|
|
10.0 KB |
|
|
27.2 KB |
|
|
4.6 KB |
|
|
32.6 KB |
|
|
9.2 KB |
|
74.Anti-Virtual Environments - Multiple Delay Execution Techniques.htm |
28.3 KB |
|
|
4.8 KB |
|
|
25.7 KB |
|
|
4.9 KB |
|
|
24.8 KB |
|
|
0.9 KB |
|
|
20.7 KB |
|
|
4.7 KB |
|
|
15.1 KB |
|
|
29.1 KB |
|
|
36.2 KB |
|
|
22.7 KB |
|
|
4.4 KB |
|
|
75.1 KB |
|
|
115.4 KB |
|
|
28.2 KB |
|
|
19.0 KB |
|
|
5.9 KB |
|
|
41.4 KB |
|
|
5.3 KB |
|
|
29.7 KB |
|
|
27.5 KB |
|
|
5.8 KB |
|
|
32.3 KB |
|
|
6.2 KB |
|
|
17.7 KB |
|
|
48.5 KB |
|
|
17.2 KB |
|
|
40.1 KB |
|
|
26.6 KB |
|
|
4.8 KB |
|
|
60.5 KB |
|
|
9.7 KB |
|
|
135.5 KB |
|
/.../1.Welcome Module_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../2.Introduction To Malware Development_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../3.Required Tools_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
168.0 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
56.6 KB |
|
|
81.6 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
|
72.7 KB |
|
|
44.5 KB |
|
/.../4.Coding Basics_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../5.Windows Architecture_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
59.7 KB |
|
|
39.7 KB |
|
|
43.4 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
42.2 KB |
|
|
0.5 KB |
|
|
44.4 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
|
78.6 KB |
|
/.../6.Windows Memory Management_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
memory-mgmt-105290746-d5fa58f7-b3d7-4064-98b8-6f7ee5dcc12d.png |
61.8 KB |
|
memory-mgmt-205290946-31ab4c35-b0e6-4727-9d45-8e439453207d.png |
94.6 KB |
|
memory-mgmt-305293097-6334290e-3d79-4254-9a79-cd7011ca4bbc.png |
117.8 KB |
|
memory-mgmt-424394866-a0dead3a-b72b-4600-8003-b8ecc2a27449.png |
190.5 KB |
|
memory-mgmt-524394895-7c747075-d866-4ca8-a15f-09cb4fec7e6d.png |
188.6 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
|
122.9 KB |
|
/.../7.Introduction To The Windows API_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../8.Portable Executable Format_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
13.0 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../9.Dynamic-Link Library_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
42.5 KB |
|
|
74.0 KB |
|
|
65.5 KB |
|
|
9.2 KB |
|
|
56.8 KB |
|
|
31.6 KB |
|
|
32.8 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
63.9 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
70.7 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../10.Detection Mechanisms_files/ |
|
|
|
16.0 KB |
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
90.8 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../11.Windows Processes_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../12.Undocumented Structures_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
undocumented-structs-1224531910-413779d5-2e1d-4813-a545-c690.png |
104.6 KB |
|
|
1.5 KB |
|
/.../13.Payload Placement - .data & .rdata Sections_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
203.0 KB |
|
|
1.1 KB |
|
|
217.0 KB |
|
|
327.3 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../14.Payload Placement - .text Section_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
202.3 KB |
|
|
1.5 KB |
|
/.../15.Payload Placement - .rsrc Section_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
136.0 KB |
|
|
115.2 KB |
|
|
99.2 KB |
|
|
96.3 KB |
|
|
80.9 KB |
|
|
95.2 KB |
|
|
432.4 KB |
|
|
190.2 KB |
|
|
342.7 KB |
|
|
284.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../16.Introduction To Payload Encryption_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../17.Payload Encryption - XOR_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../18.Payload Encryption - RC4_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../19.Payload Encryption - AES Encryption_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
encryption-new-225952410-4a747a9a-ef94-479c-be3b-d6ae5e8de27.png |
217.9 KB |
|
encryption-new-225953480-03161b1a-119f-4c97-9b9e-11745047a21.png |
222.8 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
94.7 KB |
|
|
88.2 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../20.Evading Microsoft Defender Static Analysis_files/ |
|
|
|
462.7 KB |
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
66.9 KB |
|
|
298.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
|
447.3 KB |
|
/.../21.Payload Obfuscation - IPv4_IPv6Fuscation_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
212.5 KB |
|
|
227.8 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../22.Payload Obfuscation - MACFucscation_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
231.5 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../23.Payload Obfuscation - UUIDFuscation_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
51.8 KB |
|
|
218.7 KB |
|
|
1.5 KB |
|
/.../24.Maldev Academy Tool - HellShell_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
155.8 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../25.Maldev Academy Tool - MiniShell_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
222.9 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../26.Local Payload Execution - DLL_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
82.9 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
56.3 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
61.8 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../27.Local Payload Execution - Shellcode_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
182.9 KB |
|
|
142.1 KB |
|
|
211.3 KB |
|
|
139.0 KB |
|
|
239.1 KB |
|
|
138.6 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../28.Process Injection - DLL Injection_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
34.1 KB |
|
|
16.5 KB |
|
|
141.2 KB |
|
|
118.0 KB |
|
|
143.8 KB |
|
|
56.5 KB |
|
|
26.4 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../29.Process Injection - Shellcode Injection_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
27.8 KB |
|
|
141.4 KB |
|
|
137.4 KB |
|
|
177.0 KB |
|
|
186.9 KB |
|
|
184.4 KB |
|
|
164.7 KB |
|
|
253.3 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../30.Payload Staging - Web Server_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
14.1 KB |
|
|
21.6 KB |
|
|
59.7 KB |
|
|
18.5 KB |
|
|
18.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../31.Payload Staging - Windows Registry_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
26.8 KB |
|
|
50.4 KB |
|
|
43.9 KB |
|
|
34.2 KB |
|
|
20.6 KB |
|
|
185.0 KB |
|
|
155.1 KB |
|
|
290.9 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../32.Malware Binary Signing_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
24.4 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
21.8 KB |
|
|
62.9 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
|
78.8 KB |
|
|
82.9 KB |
|
/.../33.Process Enumeration - EnumProcesses_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
enumprocesses-108501303-c0dfa0d8-5e73-431e-9f5f-3cea0bb217be.png |
129.2 KB |
|
enumprocesses-208500959-341d233b-4852-463e-8108-6d6e4c109416.png |
52.1 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../34.Process Enumeration - NtQuerySystemInformation_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
24.8 KB |
|
|
40.1 KB |
|
|
34.2 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../35.Thread Hijacking - Local Thread Creation_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
9.4 KB |
|
|
0.6 KB |
|
threadhijack-208833406-0c1bb9f4-9a41-46e0-a2d5-b05f71c6c287.png |
41.5 KB |
|
threadhijack-308833564-0000d447-c970-40d8-8be3-8da70b63f30f.png |
15.9 KB |
|
threadhijack-408833616-43a64b68-f30e-466c-a4c6-4d48289c0158.png |
58.8 KB |
|
|
1.5 KB |
|
/.../36.Thread Hijacking - Remote Thread Creation_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
rthread-hijack-108970868-ca84b0fe-ce83-447e-b7a1-4116559bc41.png |
125.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../37.Thread Hijacking - Local Thread Enumeration_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
42.1 KB |
|
|
11.5 KB |
|
|
67.9 KB |
|
|
1.5 KB |
|
/.../38.Thread Hijacking - Remote Thread Enumeration_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
65.9 KB |
|
|
93.9 KB |
|
|
84.9 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../39.APC Injection_files/ |
|
|
apc-demo-1-109284381-1875d55b-1574-4421-b4e9-6f6948a5a316.png |
71.3 KB |
|
apc-demo-1-209284381-1875d55b-1574-4421-b4e9-6f6948a5a316.png |
61.3 KB |
|
apc-demo-2-109284381-1875d55b-1574-4421-b4e9-6f6948a5a316.png |
42.7 KB |
|
apc-demo-2-209284381-1875d55b-1574-4421-b4e9-6f6948a5a316.png |
68.1 KB |
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../40.Early Bird APC Injection_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
56.9 KB |
|
|
137.3 KB |
|
|
55.6 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../41.Callback Code Execution_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../42.Local Mapping Injection_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
local-map-inject-109424404-c8e38d0c-cf1a-401a-b881-e1d50f0fb.png |
63.6 KB |
|
local-map-inject-209424404-c8e38d0c-cf1a-401a-b881-e1d50f0fb.png |
91.6 KB |
|
local-map-inject-309427185-a71d9b01-a6f8-4fd8-be13-25e331ad9.png |
103.5 KB |
|
local-map-inject-409427186-264e5199-4331-4578-84bc-c9c9cba45.png |
123.0 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../43.Remote Mapping Injection_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
remote-map-109431584-4f2ef9e2-3d8e-49ce-9998-b9070c566647.png |
90.6 KB |
|
remote-map-209431586-0863ea8b-fa83-486b-aeac-ff718f759de7.png |
177.9 KB |
|
remote-map-309431587-6d988463-f0aa-4cc2-8252-1b0d1426af2d.png |
182.1 KB |
|
remote-map-409431570-6cd31d0b-0dee-4930-97d3-5124112c3e77.png |
224.0 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../44.Local Function Stomping Injection_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
190.5 KB |
|
|
205.7 KB |
|
|
193.4 KB |
|
|
163.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../45.Remote Function Stomping Injection_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
remote-stomp-109445015-30dbf6a1-2ece-4d4c-a304-a9fc12f8f231.png |
50.3 KB |
|
remote-stomp-209445031-a0b9b825-93f8-429c-a6eb-5dc4e276e2df.png |
189.7 KB |
|
remote-stomp-309445021-d9ccc1af-1eb5-4e9e-ba62-8f67b3442c90.png |
157.8 KB |
|
remote-stomp-409445036-d03ad29c-8eb0-4b5a-b166-bd30458dbe1a.png |
144.6 KB |
|
remote-stomp-509445038-6bb55397-dbac-4546-b1d7-2a7be0744c8a.png |
260.8 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../46.Payload Execution Control_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
46.1 KB |
|
|
46.2 KB |
|
|
46.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../47.Spoofing PPID_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
56.9 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
ppid-spoofing-209529234-c72226c9-0cf1-401f-b46d-6b32cb1bac25.png |
55.6 KB |
|
ppid-spoofing-309529480-978dfe1a-ba61-4881-a33d-9614bd7ee3bb.png |
8.7 KB |
|
ppid-spoofing-409530891-f8b81cc4-8cec-4ffe-b413-debf5f051ae8.png |
64.4 KB |
|
ppid-spoofing-1209528890-4c267ff2-a7b9-4036-8279-a5af58f067c.png |
34.2 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../48.Process Argument Spoofing (1)_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
arg-spoof-109550005-441b53e8-9f32-48c3-96a5-56b5b7eb427a.png |
92.0 KB |
|
arg-spoof-209553208-efe6e1fb-2e03-4840-a1ff-821217ddf731.png |
29.0 KB |
|
arg-spoof-309567835-eed3b698-80d0-4a39-ae98-7d2f4120a9a3.png |
102.3 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../49.Process Argument Spoofing (2)_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
107.6 KB |
|
|
20.0 KB |
|
|
93.3 KB |
|
|
8.1 KB |
|
|
100.4 KB |
|
|
46.2 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../50.Parsing PE Headers_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
pe-parser-109789281-55662de8-c252-427c-b4d0-8245e238ce10.png |
23.2 KB |
|
pe-parser-209789466-71cb09b6-7e8f-4694-b9b6-f5064aecfb9c.png |
104.5 KB |
|
|
13.0 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../51.String Hashing_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
string-hashing-020876979-d3fbb005-d0d5-4624-a302-9f0f0469d86.png |
207.9 KB |
|
string-hashing-109826350-7f0ae4f9-76c6-4293-990a-16ff72de7e0.png |
78.3 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../52.IAT Hiding & Obfuscation - Introduction_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
iat-intro-209847024-7ba7fa01-913d-405a-94c1-6cd28adcee51.png |
89.7 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../53.IAT Hiding & Obfuscation - Custom GetProcAddress_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
custom-getproc-109913387-f0fdcc3d-e9aa-48f3-bb97-615758130ba.png |
142.9 KB |
|
custom-getproc-209914072-4c8104f3-6208-42c4-8822-479c44d291c.png |
183.2 KB |
|
custom-getproc-309915517-9f411b29-61c3-4104-9d05-7fa8977ddec.png |
41.0 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
10.8 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../54.IAT Hiding & Obfuscation - Custom GetModuleHandle_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
custom-getmodule-new-221769848-48118974-d4b7-4a63-b2ce-8802b.png |
17.7 KB |
|
custom-getmodulehandle-021764060-4bc54cbd-29ea-470a-9402-ac2.png |
34.3 KB |
|
custom-getmodulehandle-110036660-4488defa-47aa-4993-902d-0c9.png |
7.6 KB |
|
custom-getmodulehandle-210036220-10ef0096-9099-4066-b6a6-5c5.png |
33.1 KB |
|
custom-getmodulehandle-310037888-cfab12a2-d9ff-4174-9c6e-2cc.png |
18.4 KB |
|
custom-getmodulehandle-410036660-4488defa-47aa-4993-902d-0c9.png |
7.6 KB |
|
custom-getmodulehandle-510041809-92e59481-49dc-4f6c-bc6d-741.png |
15.0 KB |
|
custom-getmodulehandle-610043506-5d864abe-3528-4e13-bf28-fae.png |
56.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
32.0 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../55.IAT Hiding & Obfuscation - API Hashing_files/ |
|
|
api-hashing-110060375-e0d6069b-7538-4b31-add1-92f72003f85c.png |
37.4 KB |
|
api-hashing-210060409-a932736a-ec54-4946-939f-750f44affa19.png |
14.2 KB |
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../56.IAT Hiding & Obfuscation - Custom Pseudo Handles_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
pseudo-handle-124505341-1cca443b-e5d2-4d90-8a75-5f77b08bfe56.png |
43.2 KB |
|
pseudo-handle-224505515-1079792a-5685-4051-a364-6a7424d95646.png |
19.9 KB |
|
pseudo-handle-324505523-586c63fa-8f52-4564-b01f-a52c3a34524f.png |
17.3 KB |
|
pseudo-handle-424505527-99a803e2-eaff-49a3-9ac2-470bc1fb8c69.png |
16.8 KB |
|
pseudo-handle-524524030-94c0a3e8-71c0-4df6-b4b5-e95b2e76edca.png |
8.1 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../57.IAT Hiding & Obfuscation - Compile Time API Hashing_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
compile-time-hashing-110127028-dfa23b5b-cc3a-430a-b792-23792.png |
37.2 KB |
|
compile-time-hashing-210127200-98154fdf-2810-472c-b3f8-6fa46.png |
75.0 KB |
|
compile-time-hashing-310127229-b041b0ac-e48e-4c12-88b5-cc39c.png |
19.3 KB |
|
compile-time-hashing-410127235-cfc37903-ef42-4ab6-8401-d1a20.png |
35.4 KB |
|
compile-time-hashing-510127264-113b5309-cdbb-4d86-9c74-7e7a0.png |
11.4 KB |
|
compile-time-hashing-610127288-887779b6-b023-4a31-8bc7-e7601.png |
37.3 KB |
|
compile-time-hashing-710127301-b4ad2456-74a9-4030-893a-d330d.png |
18.1 KB |
|
compile-time-hashing-810127330-fd9124e2-361c-463b-bc4e-7e5ea.png |
19.6 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../58.API Hooking - Introduction_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
hooking-intro-115247938-09b2e089-3a64-443f-86b1-e147acfe8cdc.png |
11.9 KB |
|
hooking-intro-215247209-ce8c97aa-3d6f-488e-893c-aea9230f6afa.png |
14.6 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../59.API Hooking - Detours Library_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
105.9 KB |
|
|
80.2 KB |
|
|
110.3 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../60.API Hooking - Minhook Library_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
155.4 KB |
|
|
157.9 KB |
|
|
140.1 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../61.API Hooking - Custom Code_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
custom-trampoline-113731211-c0c71ee9-93b5-4e56-811e-b9595193.png |
170.2 KB |
|
custom-trampoline-213732622-0d251a96-90b6-43fa-ae02-6bc14b0b.png |
85.2 KB |
|
custom-trampoline-313731997-b35bff75-14b3-4b32-96d7-91313205.png |
152.2 KB |
|
custom-trampoline-413732637-5e2985c7-2bda-4e75-98c4-9ea6e8c1.png |
134.8 KB |
|
custom-trampoline-513732042-e95b475c-72ed-4797-b8e5-4d7cb545.png |
142.3 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../62.API Hooking - Using Windows APIs_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
windows-hooks-1223195943-e2c26fe0-45e5-4ef2-b10c-fcadf193352.png |
166.9 KB |
|
/.../63.Syscalls - Introduction_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
syscall-intro-221095509-588e2694-4323-4de4-a929-01a0fc209ff0.png |
157.9 KB |
|
syscall-intro-321109035-b09edb7e-5ecb-4c6f-96d5-de081603d047.png |
91.7 KB |
|
syscalls-intro-113904478-7d2bf6e7-ee44-4a3e-8100-28e26d0fe0d.png |
12.4 KB |
|
syscalls-intro-213904491-110e794d-616f-4239-8a0a-96c2d2be77d.png |
12.2 KB |
|
syscalls-intro-313903469-08ed9596-55bd-4c09-b39b-dc1f8e169d4.png |
22.1 KB |
|
syscalls-intro-413903414-69957a37-e317-4913-aa29-d9720b6f9eb.png |
19.9 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../64.Syscalls - Userland Hooking_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
syscalls-userland-hooks-113914292-072b98f1-dd82-4ccc-b111-2a.png |
50.5 KB |
|
syscalls-userland-hooks-213914403-878e7988-5106-49dd-95fd-11.png |
44.9 KB |
|
syscalls-userland-hooks-313917466-28dfea35-3e7d-489f-9575-92.png |
81.9 KB |
|
syscalls-userland-hooks-413917672-f8a15753-f95d-4236-98e0-d5.png |
80.8 KB |
|
syscalls-userland-hooks-516898739-a3e3c7e6-68d7-4e8f-a424-15.png |
18.7 KB |
|
syscalls-userland-hooks-616902643-50621da8-9220-413d-9a46-ff.png |
30.8 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../65.Syscalls - SysWhispers_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
13.3 KB |
|
syswhispers-314041015-7c969ae9-8b74-46a5-bf36-2c6bbedad332.png |
97.6 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../66.Syscalls - Hell's Gate_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
hellsgate-114089998-966e34f8-c59b-4b3a-8c84-8d6014001a19.png |
13.6 KB |
|
hellsgate-214097117-16ca9e20-17b3-427c-b0b0-b0e7ec78191c.png |
20.2 KB |
|
hellsgate-314099314-0029aee9-f8c2-4436-a740-4c2964a952be.png |
3.3 KB |
|
hellsgate-414099901-48434135-7e83-4cd5-aea6-94d1ef75f652.png |
20.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../67.Syscalls - Reimplementing Classic Injection_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
syscalls-classic-114349632-de44115a-3e9f-450f-bb37-f0bff7776.png |
30.0 KB |
|
syscalls-classic-214351708-4ba6253b-4713-4fed-8711-e8cb07669.png |
33.8 KB |
|
syscalls-classic-314352187-6786f4d7-1ae2-4e6b-94ce-8f8087d22.png |
28.2 KB |
|
syscalls-classic-414353258-3fbf4ead-ce9c-4083-805a-ae5ced082.png |
27.0 KB |
|
syscalls-classic-514353606-1e3d5862-fc03-4247-b03e-493b07f3a.png |
32.1 KB |
|
syscalls-classic-618293274-8d259f06-efa2-4254-886c-ce14500fb.png |
23.3 KB |
|
syscalls-classic-714361294-3e6b766a-57cc-4a05-b788-fe53e9cdc.png |
269.2 KB |
|
syscalls-classic-814362613-395c4f9f-05c5-4a0a-9325-4f2deedaf.png |
252.4 KB |
|
syscalls-classic-914361542-8212a53a-8c06-4a9f-ba93-4bf8add3a.png |
281.2 KB |
|
syscalls-classic-9214363039-c409bb06-27a1-433e-a06b-3617828b.png |
242.7 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../68.Syscalls - Reimplementing Mapping Injection_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
syscall-mapping-114492060-65bb4d32-e61b-4489-b768-f4ef662928.png |
35.2 KB |
|
syscall-mapping-214533288-cc53802f-345d-4eb3-896a-fb4d7dc61b.png |
276.3 KB |
|
syscall-mapping-314533763-efe02370-e08e-4d13-9c4c-884931855b.png |
267.0 KB |
|
syscall-mapping-414534077-da2c3b3e-fcac-4691-9e1e-261b6380e7.png |
259.8 KB |
|
syscall-mapping-514534407-34d19c71-70d1-4669-99c0-6b3ce6a64d.png |
262.4 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../69.Syscalls - Reimplementing APC Injection_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
syscall-apc-114387928-a6054f8c-8590-49cb-a97e-6eb4d7e2870e.png |
336.1 KB |
|
syscall-apc-214388088-5de280c3-8fd2-4546-9127-c058c373757b.png |
287.8 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../70.Anti-Analysis - Introduction_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../71.Anti-Debugging - Multiple Techniques_files/ |
|
|
anti-debugging-115282576-1557ca5f-2841-4a0f-ad73-63c30e03c84.png |
98.4 KB |
|
anti-debugging-215283166-37faff36-628c-43e4-aaf1-e41ad6310dd.png |
28.3 KB |
|
anti-debugging-315282633-6d0bf541-7327-42b9-af79-0b9f9489cd6.png |
68.8 KB |
|
anti-debugging-415305654-6593a2cd-5fc1-4f8c-b4dc-9f4eb55c47b.png |
9.5 KB |
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../72.Anti-Debugging - Self-Deletion_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
self-deletion-115320077-5c34dcbb-2e0e-461d-b8e5-a1b34d72b139.png |
54.8 KB |
|
self-deletion-215320748-1964cf44-c332-443a-9f52-465aa7ffe9be.png |
132.3 KB |
|
self-deletion-315324185-4157dabc-fe41-4a40-b1ce-caf4c3a19c1f.png |
13.9 KB |
|
self-deletion-415326977-a40ef9d4-4c54-4c0b-b02c-c3396e24a221.png |
78.4 KB |
|
self-deletion-522060452-81349155-d24a-4b8a-b84c-fa231dfcbf3b.png |
5.8 KB |
|
self-deletion-6222060992-0b642d05-e871-4ed1-b2f0-a634796ea28.png |
5.7 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../73.Anti-Virtual Environments - Multiple Techniques_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../74.Anti-Virtual Environments - Multiple Delay Execution Techniques_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
31.1 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../75.Anti-Virtual Environments - API Hammering_files/ |
|
|
api-hammering-115849002-8f48543a-45d1-46bf-b740-5362f2ae7dc2.png |
14.7 KB |
|
api-hammering-215850112-05e21d3e-12a5-45c8-8d0f-31e466a2eae7.png |
50.2 KB |
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../76.Binary Entropy Reduction_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
entropy-reduction-123023359-a3cbf186-3de6-4628-b920-1d7a8efd.png |
531.1 KB |
|
entropy-reduction-223028955-48be70b5-ea5e-43ab-97fa-904c32dd.png |
62.9 KB |
|
entropy-reduction-323049334-8251f557-fc19-4eb4-92e8-f2bfb45e.png |
153.0 KB |
|
entropy-reduction-423140943-cb067a49-080a-465d-ba8a-d44941e5.png |
84.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../77.Brute Force Decryption_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
bruteforce-decryption-115958551-66287afd-396c-4beb-8255-0c33.png |
14.2 KB |
|
bruteforce-decryption-215972490-3457c0b5-833b-477d-a95d-ead9.png |
199.1 KB |
|
bruteforce-decryption-315973990-7836fe71-fbb0-49a1-82e0-dbca.png |
114.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../78.MalDev Academy Tool - KeyGuard_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
67.1 KB |
|
|
67.7 KB |
|
|
69.8 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../79.CRT Library Removal & Malware Compiling_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
25.3 KB |
|
|
57.2 KB |
|
|
43.2 KB |
|
|
41.4 KB |
|
|
49.4 KB |
|
|
46.5 KB |
|
|
12.9 KB |
|
|
74.0 KB |
|
|
55.3 KB |
|
|
10.3 KB |
|
|
57.9 KB |
|
|
10.2 KB |
|
|
59.0 KB |
|
|
8.5 KB |
|
|
50.1 KB |
|
|
24.5 KB |
|
|
58.3 KB |
|
|
53.4 KB |
|
|
24.4 KB |
|
|
23.8 KB |
|
|
84.6 KB |
|
|
77.2 KB |
|
|
65.4 KB |
|
|
62.7 KB |
|
|
14.6 KB |
|
|
12.3 KB |
|
|
38.5 KB |
|
|
54.3 KB |
|
|
94.1 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../80.IAT Camouflage_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
42.7 KB |
|
|
42.4 KB |
|
iat-camo-0222202369-4ec0c257-3f73-4563-8611-6a367e668455.png |
21.1 KB |
|
|
74.9 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../81.Bypassing AVs_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
118.9 KB |
|
|
52.5 KB |
|
|
17.4 KB |
|
|
201.3 KB |
|
|
43.1 KB |
|
|
66.9 KB |
|
|
115.2 KB |
|
|
108.0 KB |
|
|
96.0 KB |
|
av-bypass-116769871-25449179-cdfb-412b-899f-1744ac77246b.png |
27.9 KB |
|
av-bypass-216782299-f2e9c796-2d79-42e9-b69d-6e4277f531f4.png |
143.5 KB |
|
av-bypass-316782324-aafb32f5-4fec-40e0-bbb3-029ead10c99d.png |
153.2 KB |
|
av-bypass-416782441-c87f902c-af70-4657-ad39-93d2f977673b.png |
143.2 KB |
|
av-bypass-516782392-ec8ace35-58fe-4ac6-8317-9d553123076b.png |
141.1 KB |
|
av-bypass-616804411-39794aab-14d5-439c-9f30-2ed26efe8dce.png |
147.7 KB |
|
av-bypass-716812124-de717043-aa23-40c9-8058-f0ae0c06f407.png |
66.0 KB |
|
av-bypass-816812885-3a8e28cd-22cb-42f0-9673-9d58ea2471da.png |
62.0 KB |
|
av-bypass-916815114-a9254939-9382-4dfe-8c32-54f871d9fc47.png |
53.0 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../82.Introduction To EDRs_files/ |
|
|
|
41.2 KB |
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
69.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
intro-edr-120017985-26bd0e42-0d73-4b1f-81da-b14b76e9efef.png |
36.8 KB |
|
intro-edr-219966477-a29ed0b1-e7af-4e89-8461-98d570ab8e1b.png |
89.1 KB |
|
intro-edr-320010420-0de272ee-4b02-4394-b79f-6bd29770d8da.png |
161.0 KB |
|
intro-edr-419941044-badc629b-fa34-4dfc-95e4-db9f22c94612.png |
143.6 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../83.NTDLL Unhooking - Introduction_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
ntdll-unhooking-intro-118247087-fa554dbf-e85f-4d02-b855-2dce.png |
203.3 KB |
|
ntdll-unhooking-intro-218247984-f05b2000-b273-433a-8a71-7405.png |
152.9 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../84.NTDLL Unhooking - From Disk_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
160.5 KB |
|
ntdll-unhooking-disk-118295799-85ce595b-6772-44bf-b764-0ba03.png |
45.0 KB |
|
ntdll-unhooking-disk-218424594-28bea557-3659-4d92-84e2-fc569.png |
70.7 KB |
|
ntdll-unhooking-disk-318424215-3ec0d749-437d-42cb-b138-c925a.png |
24.4 KB |
|
ntdll-unhooking-disk-418457505-d1001776-7d96-4177-9320-4fa80.png |
183.7 KB |
|
ntdll-unhooking-disk-518457513-3ccc44f1-e96f-489c-a4fb-a4f45.png |
158.9 KB |
|
ntdll-unhooking-disk-618457520-f7c9130c-70bb-48a1-ab62-7c875.png |
197.1 KB |
|
ntdll-unhooking-disk-718459846-589d3a07-a934-4d32-bbdb-45bb2.png |
148.2 KB |
|
ntdll-unhooking-disk-818459854-9d1de617-884f-441b-85c1-17386.png |
114.0 KB |
|
ntdll-unhooking-disk-918459862-619987f0-38ee-48c7-90f3-45b50.png |
158.9 KB |
|
|
35.4 KB |
|
|
61.5 KB |
|
|
42.6 KB |
|
|
101.6 KB |
|
|
60.6 KB |
|
|
79.6 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../85.NTDLL Unhooking - From KnownDlls Directory_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
ntdll-unhooking-knowndlls-118473010-cd9df141-2f08-47f7-a57e-.png |
84.9 KB |
|
ntdll-unhooking-knowndlls-218529831-d561ae0a-5e2b-4da9-9eb6-.png |
51.2 KB |
|
ntdll-unhooking-knowndlls-318529838-7c90c7e7-efd9-4dcb-965f-.png |
154.6 KB |
|
ntdll-unhooking-knowndlls-418529851-010d8412-8dce-4855-bfb8-.png |
144.9 KB |
|
ntdll-unhooking-knowndlls-518529888-b486838f-b284-46e5-83d4-.png |
174.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../86.NTDLL Unhooking - From a Suspended Process_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
ntdll-suspended-process-118639361-38c2053c-1ce0-4432-996e-53.png |
25.7 KB |
|
ntdll-suspended-process-218648672-32764e8b-364c-43a0-8dd7-b3.png |
212.1 KB |
|
ntdll-suspended-process-318679682-0ba9b734-e1e7-4896-90d6-d0.png |
80.8 KB |
|
ntdll-suspended-process-418679690-a8faac4b-bb48-4d37-939d-70.png |
170.5 KB |
|
ntdll-suspended-process-518679693-f19b0159-5abb-4c98-88c0-09.png |
158.0 KB |
|
ntdll-suspended-process-618679699-59d3f22d-e8a0-4d1d-9a61-85.png |
181.4 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../87.NTDLL Unhooking - From a Web Server_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
185.3 KB |
|
|
189.7 KB |
|
ntdll-unhooking-server-118739986-88f6cb96-f2b6-4b20-8b93-7d3.png |
90.7 KB |
|
ntdll-unhooking-server-218741853-fb112eb2-6058-4c09-bf31-636.png |
17.1 KB |
|
ntdll-unhooking-server-318747866-fb9bb405-fce4-46b1-9797-a07.png |
12.2 KB |
|
ntdll-unhooking-server-418747883-88d09ac7-5a26-4428-858a-5e3.png |
91.3 KB |
|
ntdll-unhooking-server-518748318-85fde875-9b04-4087-99d7-991.png |
82.1 KB |
|
ntdll-unhooking-server-618750624-b5511b03-9f66-42c6-ae0c-826.png |
15.2 KB |
|
ntdll-unhooking-server-718816620-fdcedd74-65d6-49a9-b7b8-b83.png |
59.6 KB |
|
ntdll-unhooking-server-818817840-42eb37ed-c3fb-4bfc-a990-a79.png |
201.0 KB |
|
ntdll-unhooking-server-918817843-e8ec2cca-a951-40e3-af75-141.png |
133.8 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../88.Updating Hell's Gate_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
127.4 KB |
|
|
270.1 KB |
|
|
312.5 KB |
|
|
209.5 KB |
|
|
207.9 KB |
|
|
6.3 KB |
|
|
44.5 KB |
|
|
85.9 KB |
|
hellsgate-update-118970171-6a388cdf-2e50-4441-8013-d4fb0afcd.png |
12.3 KB |
|
hellsgate-update-218996854-1d20335d-ebc6-4c6c-b2a2-e8f584ac8.png |
37.2 KB |
|
hellsgate-update-318996340-a18adfb0-0cbe-4ac2-a5cd-b504f8f60.png |
64.6 KB |
|
hellsgate-update-418994573-eaf74f3a-647c-44a2-9ce2-ac97916a9.png |
220.8 KB |
|
hellsgate-update-518995420-b4dc7adb-c5f2-4a38-99a1-cfb1e845f.png |
5.7 KB |
|
hellsgate-update-619273167-9a251b35-1cb2-477a-80ba-b5ac9c009.png |
67.8 KB |
|
hellsgate-update-719008069-88be2bdc-b34e-4a9b-a338-91df90cd5.png |
18.8 KB |
|
hellsgate-update-819042962-afbc121a-d298-419a-b1e5-89eef05d8.png |
70.1 KB |
|
hellsgate-update-919042983-21be24a2-1648-4a06-afe5-d08ededb7.png |
116.4 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../89.Indirect Syscalls - HellsHall_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
indirect-syscalls-119305197-c35a0c2c-fc29-4153-ada5-aa88d131.png |
38.9 KB |
|
indirect-syscalls-219308096-e7b35871-ecc6-4b5a-9bf4-b7c33360.png |
97.0 KB |
|
indirect-syscalls-319330695-e31df2e8-be16-4b00-a1b7-81fd36bf.png |
221.7 KB |
|
indirect-syscalls-419334075-bc9f1b1c-0c8c-49e4-988d-153d35a7.png |
145.1 KB |
|
indirect-syscalls-519334085-48c45634-cf64-478d-9091-932eb275.png |
151.5 KB |
|
indirect-syscalls-619334089-413a5cbd-32fb-457b-8546-6f5f2036.png |
210.9 KB |
|
indirect-syscalls-719334094-24709fd0-3009-44af-bef7-acf53e0c.png |
218.7 KB |
|
indirect-syscalls-819334105-80f7d3a7-1de2-45bd-81e3-e2703efd.png |
148.8 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../90.Block DLL Policy_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
block-dll-119432594-98c5ac96-6827-4bd5-b1bd-8101251cf1ef.png |
18.4 KB |
|
block-dll-219450935-66de904e-890a-40f4-87ef-d521b44ab53d.png |
212.9 KB |
|
block-dll-319450939-a6401c36-a633-4068-871e-6e3ea6768da4.png |
233.4 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/.../91.Diving Into NtCreateUserProcess_files/ |
|
|
|
562.4 KB |
|
|
30.1 KB |
|
|
168.2 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
1.1 KB |
|
|
0.8 KB |
|
|
31.0 KB |
|
|
0.4 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
4.7 KB |
|
|
0.1 KB |
|
ntcreateuserprocess-119551140-8b599665-05e6-44b7-829c-fc1d43.jpg |
189.3 KB |
|
ntcreateuserprocess-219843832-69179def-33c9-4145-a2cc-5b876d.png |
37.1 KB |
|
ntcreateuserprocess-319843814-83b44231-2b26-4236-8764-c0aab5.png |
37.2 KB |
|
ntcreateuserprocess-419843782-b85fa358-4019-49dd-856f-605170.png |
37.2 KB |
|
ntcreateuserprocess-526114852-0ea90178-69cb-4383-98c2-796ffb.png |
78.3 KB |
|
ntcreateuserprocess-626114907-67b9501b-6e77-42b2-98a1-f7eac8.png |
90.3 KB |
|
ntcreateuserprocess-719850092-b93a1079-dfe7-4a3c-9db5-bc00c3.png |
75.6 KB |
|
ntcreateuserprocess-819850671-388c86f6-beb3-4009-b03d-2854ea.png |
110.2 KB |
|
ntcreateuserprocess-919850979-2cf51837-c6e8-448b-a038-ab24fb.png |
122.9 KB |
|
|
0.5 KB |
|
|
0.6 KB |
|
|
1.5 KB |
|
/Maldev Modules/Modules_files/ |
|
|
|
30.1 KB |
|
|
39.7 KB |
|
|
1.1 KB |
|
|
2.4 KB |
|
|
31.0 KB |
|
|
89.5 KB |
|
|
19.0 KB |
|
|
0.5 KB |
|
|
0.5 KB |
|
|
0.1 KB |
|
|
0.6 KB |
|
|
0.6 KB |
|
/MalDev/Challenges/ |
|
|
|
302.8 KB |
|
|
0.8 KB |
|
|
2.8 KB |
|
|
0.9 KB |
|
|
2.3 MB |
|
|
0.3 KB |
|
|
102.6 KB |
|
|
1.5 KB |
|
|
102.6 KB |
|
|
0.9 KB |
|
|
110.4 KB |
|
|
1.8 KB |
|
|
5.1 KB |
|
|
0.5 KB |
|
|
113.7 KB |
|
|
0.7 KB |
|
|
107.3 KB |
|
|
0.6 KB |
|
|
102.7 KB |
|
|
0.3 KB |
|
|
4.9 KB |
|
|
0.5 KB |
|
|
24.2 KB |
|
|
0.4 KB |
|
|
6.2 KB |
|
|
0.9 KB |
|
|
4.4 KB |
|
|
0.7 KB |
|
|
4.4 KB |
|
|
0.6 KB |
|
|
3.4 KB |
|
|
0.7 KB |
|
|
5.3 KB |
|
|
0.6 KB |
|
|
4.9 KB |
|
|
0.5 KB |
|
|
8.9 KB |
|
|
0.6 KB |
|
|
4.0 KB |
|
|
1.0 KB |
|
|
4.0 KB |
|
|
0.7 KB |
|
Total files 2325 |
|
Copyright © 2025 FileMood.com
-files-arg-spoof-109550005-441b53e8-9f32-48c3-96a5-56b5b7eb427a.png-1287-44cf2381cf24bc9cd3dbe3c1c28dde3375ba6bda.html){kind=link}
-files-arg-spoof-209553208-efe6e1fb-2e03-4840-a1ff-821217ddf731.png-1288-44cf2381cf24bc9cd3dbe3c1c28dde3375ba6bda.html){kind=link}
-files-arg-spoof-309567835-eed3b698-80d0-4a39-ae98-7d2f4120a9a3.png-1289-44cf2381cf24bc9cd3dbe3c1c28dde3375ba6bda.html){kind=link}
-files-dl.svg-1293-44cf2381cf24bc9cd3dbe3c1c28dde3375ba6bda.html){kind=link}
-files-enlarge.svg-1294-44cf2381cf24bc9cd3dbe3c1c28dde3375ba6bda.html){kind=link}
-files-ide.svg-1296-44cf2381cf24bc9cd3dbe3c1c28dde3375ba6bda.html){kind=link}
-files-logo-bug-2.png-1298-44cf2381cf24bc9cd3dbe3c1c28dde3375ba6bda.html){kind=link}
-files-objectives.svg-1301-44cf2381cf24bc9cd3dbe3c1c28dde3375ba6bda.html){kind=link}
-files-dl.svg-1310-44cf2381cf24bc9cd3dbe3c1c28dde3375ba6bda.html){kind=link}
-files-enlarge.svg-1311-44cf2381cf24bc9cd3dbe3c1c28dde3375ba6bda.html){kind=link}
-files-ide.svg-1313-44cf2381cf24bc9cd3dbe3c1c28dde3375ba6bda.html){kind=link}
-files-logo-bug-2.png-1315-44cf2381cf24bc9cd3dbe3c1c28dde3375ba6bda.html){kind=link}
-files-objectives.svg-1318-44cf2381cf24bc9cd3dbe3c1c28dde3375ba6bda.html){kind=link}
-files-spoofing-109614220-d9136e16-4a7e-4ce2-a309-db47577d6f88.png-1319-44cf2381cf24bc9cd3dbe3c1c28dde3375ba6bda.html){kind=link}
-files-spoofing-209614417-27d1960a-a101-4d6d-8247-e49c9a387556.png-1320-44cf2381cf24bc9cd3dbe3c1c28dde3375ba6bda.html){kind=link}
-files-spoofing-309614553-c8f18edc-301f-4bca-92e6-bf65ae03bddf.png-1321-44cf2381cf24bc9cd3dbe3c1c28dde3375ba6bda.html){kind=link}
-files-spoofing-409618296-d64a33d8-0d25-400f-9a2d-47d9483ec70f.png-1322-44cf2381cf24bc9cd3dbe3c1c28dde3375ba6bda.html){kind=link}
-files-spoofing-509622098-ebfd8016-9d4d-413f-929f-53e8465666dd.png-1323-44cf2381cf24bc9cd3dbe3c1c28dde3375ba6bda.html){kind=link}
-files-spoofing-609622288-7f9400eb-100e-490a-a5a6-adbfa2b61f42.png-1324-44cf2381cf24bc9cd3dbe3c1c28dde3375ba6bda.html){kind=link}
