MotW, SmartScreen and how to bypass it using good old DLL Hijacks
How Mark of the Web and Defender SmartScreen try to stop phishing payloads, and why sideloading an unsigned DLL next to a signed, reputable binary walks straight past both.
read →Notes of a Malware Developer, Reverse Engineer & Offensive R&D
Reverse engineering malware, breaking detections, and notes on offensive security.
latest
ESET Wiper - Hey ESET, wait for the leak..
I've reversed engineered the ESET Wiper targeting ESET's exclusive partner in Israel to send phishing emails to Israeli businesses. See this article on bleepingcomputer.com.
Zero2Automated Advanced Malware Analysis Course - Certification
I've done the Zero2Automated Advanced Malware Analysis Course over the last few months and have now finally passed the exam!