Encrypting payloads - XOR

Encrypting payloads - XOR

Preview unavailable

You must log in or sign up to view this lesson.

RED TEAM Operator: Malware Development Essentials Course

Buy nowLearn more

Intro and Setup

Introduction

Development VM Setup

RTO-Win10.ova

RTO-maldev.zip

RTO-maldev-encrypted.zip

Shellcodes

Portable Executable

PE files - format and structure

PE Bear - looking inside

Generating EXE vs DLL

PE compilation

Droppers

Where to store payloads?

Storing payloads in code section

Data section as a container

Payloads in resource section

Obfuscation and Hiding

Encoding and Encryption

Payload encoding

Encrypting payloads - XOR

Encrypting payloads - AES

Antivirus vs call obfuscation

Implementing function call obfuscation

Backdoors and Trojans

Backdooring PE theory

Making Putty a trojan

Code Injection

What is code injection?

Injecting code into remote process

Implementing code injection

Loading DLLs into remote process

DLL generator and injector

Extras

Making program invisible

Combined Project

Dropper overview

Dropper implementation

Bypassing Windows Defender

Assignment

Summary

Your Feedback

Course closing information