Content Paint
Search
Sign in

Reverse Engineering

CyberChef  | Mar 25, 2024
Latrodectus Deobfuscation - Removal of Junk Comments and Self-Referencing Code
Latrodectus Deobfuscation - Removal of Junk Comments and Self-Referencing Code

Identifying and Removing Obfuscation in a Self-Referencing Latrodectus Loader

CyberChef  | Feb 26, 2024
Advanced CyberChef Techniques for Configuration Extraction - Detailed Walkthrough and Examples
Advanced CyberChef Techniques for Configuration Extraction - Detailed Walkthrough and Examples

Advanced CyberChef techniques using Registers, Regex and Flow Control

Reverse Engineering  | Dec 08, 2023
How to Use Ghidra to Analyse Shellcode and Extract Cobalt Strike Command & Control Servers
How to Use Ghidra to Analyse Shellcode and Extract Cobalt Strike Command & Control Servers

Manual analysis of Cobalt Strike Shellcode with Ghidra. Identifying function calls and resolving API hashing.

Reverse Engineering  | Dec 05, 2023
Ghidra Basics - Identifying, Decoding and Fixing Encrypted Strings
Ghidra Basics - Identifying, Decoding and Fixing Encrypted Strings

Manual identification, decryption and fixing of encrypted strings using Ghidra and x32dbg.

Reverse Engineering  | Nov 26, 2023
Ghidra Basics - Pivoting From Imported Funtions
Ghidra Basics - Pivoting From Imported Funtions

Leveraging Ghidra to establish context and intent behind imported functions.

Reverse Engineering  | Nov 24, 2023
Ghidra Basics - Pivoting from String Cross References
Ghidra Basics - Pivoting from String Cross References

Leveraging Ghidra to establish context and intent behind suspicious strings.

Reverse Engineering  | Nov 24, 2023
Ghidra Basics - Manual Shellcode Decryption
Ghidra Basics - Manual Shellcode Decryption

Manually Reversing a decryption function using Ghidra, ChatGPT and CyberChef.

Reverse Engineering  | Nov 16, 2023
Identifying Config in .NET Malware With Garbageman
Identifying Config in .NET Malware With Garbageman

Extracting C2 configuration using the Garbageman .NET analysis tool

Ghidra  | Nov 06, 2023
Malware Unpacking With Hardware Breakpoints - Cobalt Strike Shellcode Loader
Malware Unpacking With Hardware Breakpoints - Cobalt Strike Shellcode Loader

Unpacking a simple Cobalt Strike loader using Debuggers and Hardware breakpoints.

Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Great! You've successfully signed up.
Great! You've successfully signed up.
Welcome back! You've successfully signed in.
Success! You now have access to additional content.