Shellter is a dynamic shellcode injection tool, and probably the first dynamic PE infector ever created.
It can be used in order to inject shellcode into native Windows applications (currently 32-bit apps only).
The shellcode can be something yours or something generated through a framework, such as Metasploit.
Shellter takes advantage of the original structure of the PE file and doesn’t apply any modification such as changing memory access permissions in sections (unless the user wants and/or he chooses Basic Mode), adding an extra section with RWE access,and whatever would look dodgy under an AV scan.
Shellter uses a unique dynamic approach which is based on the execution flow of the target application.
That's all! See you.
Showing posts with label Windows. Show all posts
Showing posts with label Windows. Show all posts
Sunday, June 29, 2014
Saturday, July 28, 2012
Get Windows systems password without hash decyption
Almost all the Windows system versions are affected. The following video is not made by me and it shows you how.
That's all! See you.
That's all! See you.
Wednesday, July 25, 2012
Enterprise WiFi Worms, Backdoors and Botnets for fun & profit
Windows 7 has a feature to create a Wifi access point on your laptop. Hackers will take advantage this feature to leverage to compromise your networks by mean of worms and/or backdoors with social engineering technique to build a botnet.
Vivek Ramachandran is going to show you the concept and how it works.
That's all! See you.
Vivek Ramachandran is going to show you the concept and how it works.
That's all! See you.
Wednesday, April 11, 2012
Undetectable Trojan on Windows 7 SP1 and AVG Anti-Virus Free Edition 2012
Maybe someone out there think that their systems are safe when anti-virus programs are installed and the firewall is enabled. However, it is not true.
This video is to proof that anti-virus program and firewall can be bypassed. This video is going to WARN you all NOT to download any pirate software and cracked software as well as NOT to download any software from any untrusted source.
The technique used in the video can be used in any file format, such as video, pdf, photo/picture, audio and executable file.
About the video
The demo Windows 7 SP1 in the video is in default settings upon installed.
- Windows 7 SP1 is fully updated as on April 11, 2012.
- AVG Anti-Virus Free Edition 2012 is installed and fully updated as on April 11, 2012.
- UAC is set to default on Windows 7 SP1.
- Firewall is enabled and no extra program is allowed (default settings).
- AVG Anti-Virus Free Edition 2012 has no whitelist set
As a result, the Trojan Injected PuTTY program is undetected by AVG Anti-Virus program and UAC/Defender on Windows 7 SP1 as well as firewall.
That's all! See you.
This video is to proof that anti-virus program and firewall can be bypassed. This video is going to WARN you all NOT to download any pirate software and cracked software as well as NOT to download any software from any untrusted source.
The technique used in the video can be used in any file format, such as video, pdf, photo/picture, audio and executable file.
About the video
The demo Windows 7 SP1 in the video is in default settings upon installed.
- Windows 7 SP1 is fully updated as on April 11, 2012.
- AVG Anti-Virus Free Edition 2012 is installed and fully updated as on April 11, 2012.
- UAC is set to default on Windows 7 SP1.
- Firewall is enabled and no extra program is allowed (default settings).
- AVG Anti-Virus Free Edition 2012 has no whitelist set
As a result, the Trojan Injected PuTTY program is undetected by AVG Anti-Virus program and UAC/Defender on Windows 7 SP1 as well as firewall.
That's all! See you.
Undetectable Trojan on Windows 7 and AVG Anti-Virus
Maybe someone out there think that their systems are safe when anti-virus programs are installed and the firewall is enabled. However, it is not true.
This video is to proof that anti-virus programs and firewalls can be bypassed. This video is going to WARN you all NOT to download any pirate software and cracked software as well as NOT to download any software from any untrusted source.
The technique used in the video can be used in any file format, such as video, pdf, photo/picture, audio and executable file.
About the video
The demo Windows 7 in the video is in default settings upon installed.
- Windows 7 is fully updated as on April 10, 2012.
- AVG Anti-Virus is installed and fully updated as on April 10, 2012.
- UAC is set to default on Windows 7.
- Firewall is enabled and no extra program is allowed (default settings).
- AVG Anti-Virus has no whitelist set
As a result, the Trojan Injected PuTTY program is undetected by AVG Anti-Virus program and UAC/Defender on Windows 7 as well as firewall.
That's all! See you.
This video is to proof that anti-virus programs and firewalls can be bypassed. This video is going to WARN you all NOT to download any pirate software and cracked software as well as NOT to download any software from any untrusted source.
The technique used in the video can be used in any file format, such as video, pdf, photo/picture, audio and executable file.
About the video
The demo Windows 7 in the video is in default settings upon installed.
- Windows 7 is fully updated as on April 10, 2012.
- AVG Anti-Virus is installed and fully updated as on April 10, 2012.
- UAC is set to default on Windows 7.
- Firewall is enabled and no extra program is allowed (default settings).
- AVG Anti-Virus has no whitelist set
As a result, the Trojan Injected PuTTY program is undetected by AVG Anti-Virus program and UAC/Defender on Windows 7 as well as firewall.
That's all! See you.
Sunday, February 12, 2012
Automatic Backdoor Generator for Windows System
Astr0baby developed an automatic tools to generate a backdoor for Windows system.
Later, www.coresec.org modified his work to make it workable on Back|Track 5. So, I made the modified source code available at here.
Then, I slightly modified coresec.org's work and make a video at here for reference.
The evasion of anti-virus of the captioned generated file is not too good as some of the users posted the generated file to the free anti-virus scanners on the web and/or local anti-virus programs to confirm if it can be detected or not. The problem is that the free scanners on the web will submit the code to their companies for further analysis. So, their detection rate will be higher, just a kind of honeypot. Therefore, if you want to test the generated file locally, please make sure the box cannot surf the internet as the result will be submitted to the anti-virus company after the scan.
I found generation of backdoor automatically is quite interesting. I completely rewrite the code and it can embedded to an executable file. The code can do some simple input data validation too. The current version is 0.2 at the time of this writing. I made a video for the demo. However, the code will not be available at the moment as I am still consider to release the source code or not.
PDFs and image files can also be embedded backdoor to them in the similar way. Therefore, do not download any programs, PDFs and image files from any untrusted sources. Especially, any cracked softwares and free licensed ebooks are to be alerted. This does not only affected Windows system, Linux or Mac OS can be infected too.
That's all! See you.
Later, www.coresec.org modified his work to make it workable on Back|Track 5. So, I made the modified source code available at here.
Then, I slightly modified coresec.org's work and make a video at here for reference.
The evasion of anti-virus of the captioned generated file is not too good as some of the users posted the generated file to the free anti-virus scanners on the web and/or local anti-virus programs to confirm if it can be detected or not. The problem is that the free scanners on the web will submit the code to their companies for further analysis. So, their detection rate will be higher, just a kind of honeypot. Therefore, if you want to test the generated file locally, please make sure the box cannot surf the internet as the result will be submitted to the anti-virus company after the scan.
I found generation of backdoor automatically is quite interesting. I completely rewrite the code and it can embedded to an executable file. The code can do some simple input data validation too. The current version is 0.2 at the time of this writing. I made a video for the demo. However, the code will not be available at the moment as I am still consider to release the source code or not.
PDFs and image files can also be embedded backdoor to them in the similar way. Therefore, do not download any programs, PDFs and image files from any untrusted sources. Especially, any cracked softwares and free licensed ebooks are to be alerted. This does not only affected Windows system, Linux or Mac OS can be infected too.
That's all! See you.
Saturday, August 14, 2010
4 Must install Free Softwares for Windows
This writing is not talking about Open Source or Linux but Windows. Surprise?!
Many friends ask me what free softwares for their Windows system many times. I recommended the following softwares to them and they are very happy in using them. Thus, I want to share the list to you all Windows users.
The following free softwares are not Open Source. However, they are free to use. They are good for your Windows systems.
Powerful uninstaller
Revo Uninstaller
Powerful registry cleaner
TweakNow RegCleaner
To defrag your hard drive when your system is idle
Auslogics Disk Defrag
Anti-virus and anti-spyware replacement
Spyware Terminator
*I am not responsible for any damage on your systems when using the captioned softwares.
That's all! See you.
Many friends ask me what free softwares for their Windows system many times. I recommended the following softwares to them and they are very happy in using them. Thus, I want to share the list to you all Windows users.
The following free softwares are not Open Source. However, they are free to use. They are good for your Windows systems.
Powerful uninstaller
Revo Uninstaller
Powerful registry cleaner
TweakNow RegCleaner
To defrag your hard drive when your system is idle
Auslogics Disk Defrag
Anti-virus and anti-spyware replacement
Spyware Terminator
*I am not responsible for any damage on your systems when using the captioned softwares.
That's all! See you.
Subscribe to:
Posts (Atom)