Content Paint
Search
Sign in

CyberChef

CyberChef  | Mar 25, 2024
Latrodectus Deobfuscation - Removal of Junk Comments and Self-Referencing Code
Latrodectus Deobfuscation - Removal of Junk Comments and Self-Referencing Code

Identifying and Removing Obfuscation in a Self-Referencing Latrodectus Loader

CyberChef  | Feb 26, 2024
Advanced CyberChef Techniques for Configuration Extraction - Detailed Walkthrough and Examples
Advanced CyberChef Techniques for Configuration Extraction - Detailed Walkthrough and Examples

Advanced CyberChef techniques using Registers, Regex and Flow Control

Threat Intelligence  | Nov 27, 2023
Building Advanced Threat Intel Queries Utilising Regex and TLS Certificates - (BianLian)
Building Advanced Threat Intel Queries Utilising Regex and TLS Certificates - (BianLian)

Creating Regex Signatures on TLS Certificates with Censys.

Reverse Engineering  | Nov 24, 2023
Ghidra Basics - Manual Shellcode Decryption
Ghidra Basics - Manual Shellcode Decryption

Manually Reversing a decryption function using Ghidra, ChatGPT and CyberChef.

Reverse Engineering  | Oct 27, 2023
Remcos Downloader Analysis - Manual Deobfuscation of Visual Basic and Powershell
Remcos Downloader Analysis - Manual Deobfuscation of Visual Basic and Powershell

Decoding a Remcos Loader, leveraging regex, python and Cyberchef to identify IOCs.

CyberChef  | Oct 23, 2023
Cobalt Strike .VBS Loader - Decoding with Advanced CyberChef and Emulation
Cobalt Strike .VBS Loader - Decoding with Advanced CyberChef and Emulation

Manually decoding a Cobalt Strike .vbs Loader utilising advanced CyberChef and Shellcode Emulation.

Reverse Engineering  | Oct 20, 2023
Cobalt Strike Loader Deobfuscation Using CyberChef and Emulation (.hta files)
Cobalt Strike Loader Deobfuscation Using CyberChef and Emulation (.hta files)

Decoding a .hta script with CyberChef and analysing Shellcode with the SpeakEasy Emulator.

Dnspy  | Apr 08, 2023
Dcrat Deobfuscation - How to Manually Decode a 3-Stage .NET Malware
Dcrat Deobfuscation - How to Manually Decode a 3-Stage .NET Malware

Manual analysis and deobfuscation of a .NET based Dcrat. Touching on Custom Python Scripts, Cyberchef and .NET analysis with Dnspy.

Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Great! You've successfully signed up.
Great! You've successfully signed up.
Welcome back! You've successfully signed in.
Success! You now have access to additional content.