#maldev — Public Fediverse posts

#MalDev Myths by @dobin

https://blog.deeb.ch/posts/maldev-myths/

Dificultad para bypassear EDRs: perspectiva de un operador de ransomware https://www.hackplayers.com/2025/04/dificultad-para-bypassear-edrs.html #ransomware #antivirus #noticias #evasion #malware #maldev #edr

Gigabyte: Cuando el C# se convirtió en arma (y herramienta de aprendizaje) https://www.hackplayers.com/2025/03/gigabyte-cuando-el-c-se-convirtio-en-arma.html #ciberseguridad #hacktivismo #hacking #malware #maldev #C

Encryfer-X: un ransomware en Rust que cifra todos los archivos con las combinaciones de algoritmos más fuertes https://www.hackplayers.com/2025/03/encryfer-x-un-ransomware-en-rust-que.html #ransomware #malware #maldev #rust

Process Herpaderping https://www.hackplayers.com/2025/03/process-herpaderping.html #técnicas #Windows #maldev #rust #c++ #C

Nuevas Tendencias en Evasión de EDRs en 2025 https://www.hackplayers.com/2025/02/nuevas-tendencias-en-evasion-de-edrs-2025.html #técnicas #evasion #malware #Windows #maldev #edr

Early Cascade injection https://www.hackplayers.com/2025/01/early-cascade-injection.html #técnicas #redteam #Windows #maldev #C

Merry Christmas, have another Windows maldev blog: writing migratory payloads. Learn the secret to disappearing from your mouse and reappearing inside explorer.exe! https://amethyst.systems/blog/posts/writing-migratory-payloads/ #infosec #malware #maldev

@amethyst Yo I saw this last week and meant to reply but totally forgot until now!!

You might enjoy:

• My attempt at collecting actual Rust malware in the wild, hasn't been updated in a while since there's been so much Rust malware this year and it's hard to keep up lol: https://github.com/cxiao/rust-malware-gallery

• @notnordgaren 's loader: https://github.com/Nordgaren/stealth-win. It has a no_std version which is cool

• All of @memn0ps 's stuff, all of his maldev projects are in Rust: https://github.com/memN0ps

• This compile time string obfuscation library which I see a lot of Rust malware using, it's a good example of how macros can be useful for maldev: https://github.com/CasualX/obfstr

• This set of examples on how to write the user-mode part of one of those BYOVD process killer tools: https://github.com/BlackSnufkin/BYOVD. It's a good approachable example on how to do Windows system programming in Rust, using https://crates.io/crates/winapi

#malware #rustlang #reverseengineering #maldev #infosec

Voidmaw, una nueva técnica de evasión de escáneres de memoria https://www.hackplayers.com/2024/11/voidmaw-evasion-escaner-memoria.html #evasion #malware #redteam #Windows #maldev #c++ #edr #C

Windows Kernel Rootkit en Rust (shadow-rs) https://www.hackplayers.com/2024/08/windows-kernel-rootkit-en-rust-shadow-rs.html #herramientas #rootkits #malware #Windows #maldev #rust