Reverse Dungeon
@reverse_dungeon
4.39K subscribers
733 photos
59 videos
987 files
2.28K links
Reverser's notes
The Mentor
1989
Download Telegram
About
Blog
Apps
Platform
Join
Reverse Dungeon
4.39K subscribers
Reverse Dungeon
https://github.com/lowleveldesign/debug-recipes/tree/master/debugging-using-windbg
GitHub
debug-recipes/debugging-using-windbg at master · lowleveldesign/debug-recipes
My notes collected while debugging various problems in .NET and native applications. - debug-recipes/debugging-using-windbg at master · lowleveldesign/debug-recipes
464 views
Reverse Dungeon
https://youtu.be/bqubE6m62oM
YouTube
Using WinDbg Episode 1 - Solve a real-world high CPU issue on an Active Directory Domain Controller
Folks kept asking me for publicly-available learning material on how to get started with WinDbg.

Follow me on Twitter @JosephRyanRies
452 views
Reverse Dungeon
https://asciiflow.com
457 views
Reverse Dungeon
Reverse Dungeon
https://youtu.be/bqubE6m62oM
https://www.youtube.com/watch?v=QsqY9joILfo&list=WL&index=3
YouTube
Using WinDbg Episode 2 - Help, the netlogon service won't start!
In which we debug a Windows machine where the netlogon service won't start.

Follow me on Twitter @JosephRyanRies
515 views
Reverse Dungeon
Forwarded from Ralf Hacker Channel (Ralf Hacker)
Только опубликовано крутое исследование по обходу методов анализа EDR на основе трассировки стека

https://0xdarkvortex.dev/proxying-dll-loads-for-hiding-etwti-stack-tracing/

#redtram #maldev
0xdarkvortex.dev
Hiding In PlainSight - Proxying DLL Loads To Hide From ETWTI Stack Tracing
Dark Vortex provides various cybersecurity trainings, products and other services.
1
448 views
Reverse Dungeon
https://hatching.io/blog
hatching.io
Hatching - Automated malware analysis solutions
Automated malware analysis with Hatching Triage, the high-volume sandbox solution for SOCs, CERTs, SOARs, and MSSPs.
508 views
Reverse Dungeon
https://empyreal96.github.io/nt-info-depot/Windows-Kernel-Internals/ObjectManager.pdf
1
514 views
Reverse Dungeon
https://www.youtube.com/watch?v=GM9WQMrSkWk
YouTube
[BSL2022] Windows kernel rootkits for red teams - André Lima
In this presentation, André goes through details of not only things to consider when developing in the kernel but, most importantly, things to consider when developing malware for the Windows kernel.

He explains synchronization when the Operating System…
519 views
Reverse Dungeon
Forwarded from Ralf Hacker Channel (Ralf Hacker)
И ещё одно крутое исследование по обходу EDR!

(По утверждению автора: всех EDR)

https://0xdarkvortex.dev/hiding-in-plainsight/

#redteam #maldev
0xdarkvortex.dev
Hiding In PlainSight - Indirect Syscall is Dead! Long Live Custom Call Stacks
Dark Vortex provides various cybersecurity trainings, products and other services.
428 views
Reverse Dungeon
Forwarded from greg0r0 life&work
Please open Telegram to view this post
VIEW IN TELEGRAM
Reverse Dungeon
Forwarded from Order of Six Angles
3gstudent.github.io/archive
3gstudent-Blog
Archive
A Jekyll Blog Theme For Hackers
412 views
Reverse Dungeon
https://bytebreach.com/nsa-codebreaker-challenge-2022-writeup
Byte Breach
NSA Codebreaker Challenge 2022 Writeup - Byte Breach
A writeup of the 10 challenges from the NSA Codebreaker Challenge 2022
441 views
Reverse Dungeon
Forwarded from Violent_Maid
Пост-ржачных фактов вам на ночь:
Если мапать вендовый драйвер в момент инициализации патчгарда (см. KeInitAmd64SpecificState, ExpLicenseWatchInitWorker и KiFilterFiberContext), патчгард сочтет ваш драйвер ядром и начнет неистово "защищать" его.

Это не баг и не фича, просто особенность "архитектуры" такая (я не знаю как это назвать, придумайте сами)
2
375 views
Reverse Dungeon
https://github.com/MzHmO/Privileger
GitHub
GitHub - MzHmO/Privileger: Privileger is a tool to work with Windows Privileges
Privileger is a tool to work with Windows Privileges - MzHmO/Privileger
2
529 views
Reverse Dungeon
https://vk9-sec.com/privilege-escalation-unquoted-service-path-windows
581 views
Reverse Dungeon
offensive rootkit development.pdf
3.4 MB
Offensive Rootkit Development
3
1.08K views
Reverse Dungeon
https://guyinatuxedo.github.io
guyinatuxedo.github.io
Nightmare - Nightmare
Nightmare: an intro to binary exploitation / reverse engineering course based around CTF challenges.
3
1.05K views
Reverse Dungeon
Forwarded from 0% Privacy
#security #forensics #fw #bootkit #MitM #SMMrootkit
411 views