Code signing is required to load drivers in Windows. Also, they tell users if an application can be trusted and launched. Learn how it works.
Macro malware are known for decades but still remain the preferred infection method for infecting machines with Ransomware, Trojans, … Learn how it works.
Discover exploitation methods, exploits development and inner workings and learn about the countermeasures that exists to protect your infrastructure.
Google Chrome protects its user preferences using a hashing mechanism. However, there’s a way to bypass this, and it’s quite used by malware in the wild.
Fileless malware has always been popular and widely covered (Example: Poweliks). Study of a fileless malware stored in the task scheduler.
Discover the inner working of the places where transactions between exploits dealers take place and the conditions of such transactions.
Quick approach about Windows Management Instrumentation (WMI). Meet Adware Yeabests, hiding in the WMI and see how RogueKiller takes care of it.
Exploits and Exploit kits play a major role in the spread of malware. Learn how they work and how to protect yourself from such threats.
Ransomware became the threats of the web. Learn how they work, their effects, and how to protect yourself from such malware.
Infected PDF: Extract the payload – Infected PDFs have always been a popular way to infect computers, learn how it malicious PDF files are built.