Malicious Group

Sign in Subscribe

Latest

HTTP is dead... Long live HTTP?!

HTTP is dead... Long live HTTP?!

In this post, I will continue on my last paper by showing the readers a severe HTTP request smuggling bug chain using a new gadget, as well as a few ways to exploit it.

From Akamai to F5 to NTLM... with love.

From Akamai to F5 to NTLM... with love.

Inline Assembly

Inline Assembly

Writing your own RDI /sRDI loader using C and ASM

Writing your own RDI /sRDI loader using C and ASM

Automating C2 Infrastructure with Terraform, Nebula, Caddy and Cobalt Strike

Automating C2 Infrastructure with Terraform, Nebula, Caddy and Cobalt Strike

From SKID to SAVAGE by abusing OST and Telegram services.

From SKID to SAVAGE by abusing OST and Telegram services.

Offensive Security

HTTP is dead... Long live HTTP?!

HTTP is dead... Long live HTTP?!

In this post, I will continue on my last paper by showing the readers a severe HTTP request smuggling bug chain using a new gadget, as well as a few ways to exploit it.

From Akamai to F5 to NTLM... with love.

From Akamai to F5 to NTLM... with love.

Automating C2 Infrastructure with Terraform, Nebula, Caddy and Cobalt Strike

Automating C2 Infrastructure with Terraform, Nebula, Caddy and Cobalt Strike

From SKID to SAVAGE by abusing OST and Telegram services.

From SKID to SAVAGE by abusing OST and Telegram services.

Malware Development

Inline Assembly

Inline Assembly

In this post, we will cover introductory concepts regarding the usage of inline assembly. We'll look at what we mean by inline assembly, how to use inline assembly and some examples of inline assembly usage.

Writing your own RDI /sRDI loader using C and ASM

Writing your own RDI /sRDI loader using C and ASM