UNDERCODE COMMUNITY

Tesla's Shanghai Gigafactory Loses Key Leader: Song Gang Departs - UNDERCODE NEWS

Undercode News was founded in order to provide the most useful information in the world of hacking and technology. Staffed 24/24 hours, seven days a week by a dedicated team in undercode around the world, so it can provide an environment of information and…

11 viewsCopyright & Fact Checker, 19:44

Forwarded from Exploiting Crew (Pr1vAt3)

12 viewsUNDERCODER, 19:45

Forwarded from Exploiting Crew (Pr1vAt3)

🦑P11-Malware Development for Red Teamers.

Structure of a Portable Executable (PE) file
-----
MS-DOS Header

Located at the very beginning of the PE file, this header ensures backward compatibility with MS-DOS systems. It starts with the signature "MZ" (hexadecimal 4D5A) to indicate that the file is an executable. The header also includes metadata and, most importantly, a pointer (at the e_lfanew field) to the location of the PE signature, which marks the start of the Windows-specific portion of the file.
-
MS-DOS Stub

Following the MS-DOS Header is a small program, known as the DOS Stub, that displays a message if the file is run in an MS-DOS environment. Typically, this message is: "This program cannot be run in DOS mode." While it serves no purpose on modern Windows systems, it remains in the file for compatibility reasons.
-
PE Signature

This marks the beginning of the Portable Executable (PE) format. The signature is always PE\0\0 (hexadecimal 50 45 00 00), signaling that the file conforms to the PE standard. This signature separates the DOS-specific data from the Windows-specific data.
-
File Header

Following the PE Signature, the File Header contains critical information about the executable. This includes details like the target machine type (e.g., x86 or x64), the number of sections, the timestamp of file creation, and flags indicating the file's characteristics. It acts as a roadmap for understanding the executable's overall structure.
-
Optional Header

Despite its name, this header is mandatory for executable files. It provides essential details such as the entry point (the starting address for execution), the image base (preferred memory location), and sizes of various segments. This header bridges the gap between the high-level structure of the file and its low-level memory layout.
-
Section Headers (PE Sections)

These headers define the various sections of the executable, such as .text (code), .data (initialized data), and .rdata (read-only data). Each section header specifies attributes like the section's size, location in memory, and access permissions. These sections contain the actual content of the program, including its instructions, data, and resources.

Ref: Mohit SoniMohit Soni
@UndercodeCommunity
▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

18 viewsUNDERCODER, 19:45

Forwarded from UNDERCODE NEWS (Copyright & Fact Checker)

⚡️ Medicare Fraud: The New ‘Free Perks’ Scam

https://undercodenews.com/medicare-fraud-the-new-free-perks-scam/

@Undercode_News

Medicare Fraud: The New ‘Free Perks’ Scam - UNDERCODE NEWS

12 viewsCopyright & Fact Checker, 20:01

Forwarded from UNDERCODE NEWS (Copyright & Fact Checker)

☁️ #Microsoft and Incase Partner to Revive PC Accessories

https://undercodenews.com/microsoft-and-incase-partner-to-revive-pc-accessories/

@Undercode_News

Microsoft and Incase Partner to Revive PC Accessories - UNDERCODE NEWS

11 viewsCopyright & Fact Checker, 20:06

✨ Continue Reading 🦑 Our Community

Forwarded from UNDERCODE NEWS (Copyright & Fact Checker)

🛡️ Russia Blacklists Cybersecurity Firm Recorded Future

https://undercodenews.com/russia-blacklists-cybersecurity-firm-recorded-future/

@Undercode_News

Russia Blacklists Cybersecurity Firm Recorded Future - UNDERCODE NEWS

18 viewsCopyright & Fact Checker, 20:06

This media is not supported in your browser

Forwarded from Exploiting Crew (Pr1vAt3)

VIEW IN TELEGRAM

14 viewsUNDERCODER, 20:09

Forwarded from Exploiting Crew (Pr1vAt3)

🦑DNS Record Types You Should Know!

Here are the 8 most commonly used DNS Record Types.

1 - A (Address) Record
Maps a domain name to an IPv4 address. It is one of the most essential records for translating human-readable domain names into IP addresses.

2 - CNAME (Canonical Name) Record
Used to alias one domain name to another. Often used for subdomains, pointing them to the main domain while keeping the actual domain name hidden.

3 - AAAA Record
Similar to an A record but maps a domain name to an IPv6 address. They are used for websites and services that support the IPv6 protocol.

4 - PTR Record
Provides reverse DNS lookup, mapping an IP address back to a domain name. It is commonly used in verifying the authenticity of a server.

5 - MX Record
Directs email traffic to the correct mail server.

6 - NS (Name Server) Record
Specifies the authoritative DNS servers for the domain. These records help direct queries to the correct DNS servers for further lookups.

7 - SRV (Service) Record
SRV record specifies a host and port for specific services such as VoIP. They are used in conjunction with A records.

8 - TXT (Text) Record
Allows the administrator to add human-readable text to the DNS records. It is used to include verification records, like SPF, for email security.

Over to you: Which other DNS Record Type have you seen?

Ref: Alex Xu
@UndercodeCommunity
▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

20 viewsUNDERCODER, 20:09

Craft CMS Remote Code Execution Vulnerability (Critical) - DailyCVE

Forwarded from DailyCVE

🔴 Craft CMS Remote Code Execution Vulnerability (Critical)

https://dailycve.com/craft-cms-remote-code-execution-vulnerability-critical/

@Daily_CVE

DailyCVE

2024-12-18 : A critical remote code execution (RCE) vulnerability has been discovered in Craft CMS versions prior to 5.5.2 and […]

19 viewsDC, 20:09