💀
0xTriboulet
  • Introduction
  • Disclaimers
  • Archive
    • Notice
      • ZeroTotal
        • ZeroTotal: Msfvenom Calc
        • ZeroTotal: Self-Injecting Calc
        • ZeroTotal: Rusty Calc
      • Achieving Access
        • achieving access: implantv1
        • achieving access: implantv2
        • achieving access: implantv3
      • Deceiving Defender
        • Deceiving Defender: Making nc.exe viable again
        • Deceiving Defender: Classic Bypass
        • Deceiving Defender: Name Bypass
        • Deceiving Defender: The Texas Two Step
        • Deceiving Defender: The Big Stack Bypass
          • Making Meterpreter Viable Again
        • Deceiving Defender: Meterpreter
      • Making Malware
        • making malware #0
        • making malware #1
        • making malware #2
      • Just Malicious
        • Advanced String Obfuscation
        • From C, with inline assembly, to shellcode
        • Thnks4RWX
      • Unholy Unhooking
        • Unholy Unhooking: byoDLL
        • Unholy Unhooking: FrByoDLL
        • Unholy Unhooking: Rusty Fart
      • TTPs
        • TTPs: Embedding Payloads with MSFVenom (x86)
        • TTPs: Embedding Payloads with MSFVenom (x64)
        • TTPs: Rust vs C++
        • TTPs: JmpNoCall
        • TTPs: BadAsm
        • TTPs: BadStrings
      • Weird Windows
        • Command Hijacking with .COM
        • Non-Existent File Paths
Powered by GitBook
On this page
  1. Archive

Notice

This section contains historical write-ups and tinkering that I mostly no longer find relevant to the security conversation. This content is unmaintained, unobserved, and in many cases no longer significantly effective. For the curious, the content remains archived here.

PreviousDisclaimersNextZeroTotal

Last updated 7 days ago