Jump to content
Tuts 4 You

Malware Development 2: Advanced Injection and API Hooking (Crackinglessons)

usarmy

By usarmy
in Reverse Engineering Articles

 Share

Recommended Posts

usarmy

usarmy

Posted
Posted (edited)

MALDEV2 (Malware Development 2: Advanced Injection and API Hooking)

This course is about more advanced techniques in Malware Development. This course builds on what you have learned in Malware Development and Reverse Engineering 1: The Basics, by extending your development skills with:

advanced function obfuscation by implementing customized API calls

more advanced code injection techniques

advanced DLL injection techniques

understanding how reflective binaries work and building custom reflective DLLs

hijacking and camouflaging trojan shellcodes inside legitimate running processes

memory hooking to subvert the normal flow of a running process

exploiting the vulnerability in 32- and 64-bit process migrations

hooking the Import AddressTables (IAT) to replace it with your own functions

using inter process communication to control execution of multiple trojan processes

hooking API calls and replacing them with your own customized function

implementing DLL injection and API hooking to sniff and capture disk encryption passwords

advanced AV evasion and obfuscation techniques

and more...

 

You will learn first-hand from a Malware Developers’ perspective what windows API functions are commonly used in malware and finally have a deeper understanding of malware so that you will have enhanced skills when doing malware analysis later.

Learning Methodology:

Build programs that simulate Windows Trojans and Reverse Engineer them.

This will make you a better Reverse Engineer and Malware Analyst and also Penetration Tester.

The best way to understand malware is to be a Malware Developer.

Features:

Some topics will contain two parts:  programming and reversing.

In the programming parts we will be writing programs that simulate trojan behavior by using API functions typically found in malware.

In the final section, there will be a Lab Project, where you will combine all the knowledge you learn to create a trojan that can survive a reboot and sniff for a disk encryption password and capture it to a file.

Everything is highly practical.  No boring theory or lectures. More like walk-throughs which you can replicate and follow along. 

By the end of this course, you will have the basic skills to better understand how Malware works from the programmers' point of view. This knowledge and skills are suitable for those aspiring to be Red Teamers. Even if you have no intention of creating malware, the insider knowledge and skills you gain from this course will make you a better security professional.

Also, having practical knowledge of malware development will give you a better understanding of how to reverse engineer malware. By the end of this course, you would have gained a solid foundation for understanding how hackers can exploit windows API to inject malicious code into other processes.

 

Suitable for:

Reverse Engineering and Malware Analysis Students

Programmers who want to know how Malware is created

Students planning on entering Malware Analysis and Reverse Engineering, or Penetration Testers as a Career Path

Penetration Testers and Ethical Hackers

 

Prerequisite:

Windows PC

Basic C Language

Preferably already Completed Malware Development and Reverse Engineering 1: The Basics

 

Link:- https://send.cm/tpgzq2o5p3nq or

         https://usersdrive.com/l9fzcpnbcvs7.html

Torrent:- https://send.cm/d/5aDB or

              https://usersdrive.com/a8r7g74exmp5.html

Edited by usarmy
Link to comment
Share on other sites
Kurapica

Kurapica

Posted
Posted
On 12/27/2021 at 4:29 PM, kao said:

Course created by Paul Chin. :kick:Don't waste your time downloading that crap...

Never heard of the dude, can you elaborate more please ?

Link to comment
Share on other sites
kao

kao

Posted
Posted

Search the board, man... 😉

Paul Chin is author of crackinglessons.com where he sells his "extremely deep knowledge" of randomly clicking buttons in OllyDbg, x64dbg and dnSpy. 

 

  • Haha 2
Link to comment
Share on other sites
Kurapica

Kurapica

Posted
Posted

hehe ! then I should start writing a new series on how to crack CUDA GPU code with Notepad++ !

I hope it won't be a misleading title for marketing :D

  • Haha 2
Link to comment
Share on other sites
  • 6 months later...
zeezoom

zeezoom

Posted
Posted
On 12/27/2021 at 8:29 PM, kao said:

Course created by Paul Chin. :kick:Don't waste your time downloading that crap...

Hi, I wanna start learning the basic of RE, especially Android app RE. Do you have a better course than Paul Chin's to recommend ?

Link to comment
Share on other sites
kao

kao

Posted
Posted

You could start by looking at these 2 free courses:

https://malwareunicorn.org/workshops/re101.html

https://www.ragingrock.com/AndroidAppRE/ + https://www.youtube.com/watch?v=BijZmutY0CQ

Both are focused on legit activity like malware reversing. 

 

There are more courses on this list but I'm not sure about the quality: https://gist.github.com/IdanBanani/5be0442ad390f89259b494098f450bfd

  • Like 1
Link to comment
Share on other sites
zeezoom

zeezoom

Posted
Posted
23 hours ago, kao said:

You could start by looking at these 2 free courses:

https://malwareunicorn.org/workshops/re101.html

https://www.ragingrock.com/AndroidAppRE/ + https://www.youtube.com/watch?v=BijZmutY0CQ

Both are focused on legit activity like malware reversing. 

 

There are more courses on this list but I'm not sure about the quality: https://gist.github.com/IdanBanani/5be0442ad390f89259b494098f450bfd

Thank you so much

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing
×
×
  • Create New...