Shellcode – WindowsTechs.com

SideWinder targets the maritime and nuclear sectors with an updated toolset

Posted on March 10, 2025 by Giampaolo Dedola, Vasily Berdnikov

In this article, we discuss the tools and TTPs used in the SideWinder APT’s attacks in H2 2024, as well as shifts in its targets, such as an increase in attacks against the maritime and logistics sectors. Continue reading SideWinder targets the maritime and nuclear sectors with an updated toolset→

Angry Likho: Old beasts in a new forest

Posted on February 21, 2025 by Kaspersky

Kaspersky experts analyze the Angry Likho APT group’s attacks, which use obfuscated AutoIt scripts and the Lumma stealer for data theft. Continue reading Angry Likho: Old beasts in a new forest→

May read() syscall not set first bytes of a buffer?

Posted on February 15, 2025 by Zanna

I’m working on some pwn.college binary exploitation challenges.
ASLR is disable, stack is executable and there is no canary.
I’m not understanding one thing.
I have my shellcode which open the flag file and prints the content to stdout and… Continue reading May read() syscall not set first bytes of a buffer?→

Shellcode over MIDI? Bad Apple on a PSR-E433, Kinda

Posted on January 23, 2025 by Elliot Williams

If hacking on consumer hardware is about figuring out what it can do, and pushing it in directions that the manufacturer never dared to dream, then this is a very …read more Continue reading Shellcode over MIDI? Bad Apple on a PSR-E433, Kinda→

New SteelFox Trojan mimics software activators, stealing sensitive data and mining cryptocurrency

Posted on November 6, 2024 by Kirill Korchemny

Kaspersky experts have discovered a new SteelFox Trojan that mimics popular software like Foxit PDF Editor and JetBrains to spread a stealer-and-miner bundle. Continue reading New SteelFox Trojan mimics software activators, stealing sensitive data and mining cryptocurrency→

How to correctly generate shellcode from a PyInstaller executable? [closed]

Posted on November 5, 2024 by Onyz

For context

I am using this Python script to execute the shellcode that is found
in loader.bin
#!/usr/bin/env python3
import ctypes
import ctypes.wintypes as wt
import logging
import platform

# Set up logging logging.basicConfig(leve… Continue reading How to correctly generate shellcode from a PyInstaller executable? [closed]→

How to embed a PE file into another PE file? [duplicate]

Posted on November 3, 2024 by Onyz

What I want to do is what BDFproxy and MSFvenom do; I want to modify a file to embed another PE in it and have both working. It does not matter if they work concurrently or when the main program finishes then embedded program works, I just… Continue reading How to embed a PE file into another PE file? [duplicate]→

Segmentation fault in C shellcode x64

Posted on October 9, 2024 by RobertGG

I am learning about shellcode development in C with an example from here. I can compile the assembly code and get de opcodes, also I can run successfully the ELF compiled with NASM, but I get a segmentation fault when I run the C test appl… Continue reading Segmentation fault in C shellcode x64→

Format string attack with printf

Posted on August 7, 2024 by Ricardi

We can do a format string attack in the following way:
$ ./program.out $(echo -en ‘\xa8\xd1\xff\xff’)%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%n

Address of name: ffffd1ac, secret: ffffd1a8

ffffd849.ffffd1a8.565561b7.3.0.0.ffffd684.f7d6e70c.f7feec36… Continue reading Format string attack with printf→

bin/sh in return-to-libc attacks

Posted on August 7, 2024 by Ronald

Return-to-libc is an attack where the attacker, in most cases, returns to the system function, which it uses to execute shell commands. However, I am confused about two things:

The command that the attacker executes is often bin/sh, but i… Continue reading bin/sh in return-to-libc attacks→