MuerBT磁力搜索 BT种子搜索利器 免费下载BT种子,超5000万条种子数据

Maldev-Academy-Malware-Development

磁力链接/BT种子名称

Maldev-Academy-Malware-Development

磁力链接/BT种子简介

种子哈希:44cf2381cf24bc9cd3dbe3c1c28dde3375ba6bda
文件大小:234.93M
已经下载:7159次
下载速度:极快
收录时间:2024-05-07
最近下载:2025-12-21

移花宫入口

移花宫.com邀月.com怜星.com花无缺.comyhgbt.icuyhgbt.top

磁力链接下载

magnet:?xt=urn:btih:44CF2381CF24BC9CD3DBE3C1C28DDE3375BA6BDA
推荐使用PIKPAK网盘下载资源,10TB超大空间,不限制资源,无限次数离线下载,视频在线观看

下载BT种子文件

磁力链接 迅雷下载 PIKPAK在线播放 世界之窗 小蓝俱乐部 含羞草 欲漫涩 逼哩逼哩 成人快手 51品茶 母狗园 51动漫 91短视频 抖音Max 海王TV TikTok成人版 PornHub 暗网Xvideo 草榴社区 哆哔涩漫 呦乐园 萝莉岛 搜同 91暗网

最近搜索

homa-00157 沙尘暴 coco+de+mal 121025_01 《云盘高质⭐顶级泄密》露脸才是王道 dee.williams くノ一忍法帖5+自来也秘抄 2024-12 酒店 许我耀眼 stranger things s05e05 122425-001 wltn9818 mdud 神波多一花無碼 corelli vixen.20.10.15 soe-976 dragon ball z mudv 潜能探案组 嫩小兔 清楚で可憐な女教師も簡単に肉奴●に調教できる催●アプリがあるって本当ですか 南京照相馆 deeper 4112104 kramer 2160p ssis-020 小欣奈 淫人妻-黑屄待操 com-293

文件列表

  • MalDev/MalDev.pdf 53.2 MB
  • MalDev/81-Bypassing AVs.pdf 2.9 MB
  • MalDev/Challenges/03-Unhook-DLLs.zip 2.3 MB
  • MalDev/88-Updating Hells Gate.pdf 2.2 MB
  • MalDev/Module 26 - DLLSideloading3.zip 1.8 MB
  • MalDev/84-NTDLL Unhooking - From Disk.pdf 1.7 MB
  • MalDev/15-Payload Placement - rsrc Section.pdf 1.6 MB
  • MalDev/68-Syscalls - Reimplementing Mapping Injection.pdf 1.6 MB
  • MalDev/91-Diving Into NtCreateUserProcess.pdf 1.5 MB
  • MalDev/89-Indirect Syscalls - HellsHall.pdf 1.5 MB
  • MalDev/67-Syscalls - Reimplementing Classic Injection.pdf 1.4 MB
  • MalDev/19-Payload Encryption - AES Encryption.pdf 1.4 MB
  • MalDev/13-Payload Placement - data rdata Sections.pdf 1.1 MB
  • MalDev/87-NTDLL Unhooking - From a Web Server-1.pdf 1.1 MB
  • MalDev/79-CRT Library Removal Malware Compiling.pdf 1.1 MB
  • MalDev/29-Process Injection - Shellcode Injection.pdf 1.1 MB
  • MalDev/27-Local Payload Execution - Shellcode.pdf 968.3 kB
  • MalDev/86-NTDLL Unhooking - From a Suspended Process.pdf 908.0 kB
  • MalDev/20-Evading Microsoft Defender Static Analysis.pdf 895.1 kB
  • MalDev/Module 25 - DLLSideloading2.zip 885.7 kB
  • MalDev/31-Payload Staging - Windows Registry.pdf 874.4 kB
  • MalDev/78-MalDev Academy Tool - KeyGuard.pdf 873.6 kB
  • MalDev/69-Syscalls - Reimplementing APC Injection.pdf 841.3 kB
  • MalDev/59-DetoursLibHooking.zip 814.3 kB
  • Maldev Modules/59.DetoursLibHooking.zip 814.3 kB
  • MalDev/76-Binary Entropy Reduction.pdf 803.6 kB
  • MalDev/61-API Hooking - Custom Code.pdf 794.5 kB
  • MalDev/85-NTDLL Unhooking - From KnownDlls Directory.pdf 752.8 kB
  • MalDev/28-Process Injection - DLL Injection.pdf 748.1 kB
  • MalDev/45-Remote Function Stomping Injection.pdf 737.4 kB
  • MalDev/44-Local Function Stomping Injection.pdf 710.6 kB
  • MalDev/21-Payload Obfuscation - IPv4IPv6Fuscation.pdf 708.2 kB
  • MalDev/6-Windows Memory Management.pdf 694.5 kB
  • MalDev/60-MinhookLibHooking.zip 673.3 kB
  • Maldev Modules/60.MinhookLibHooking.zip 673.3 kB
  • MalDev/90-Block DLL Policy.pdf 647.3 kB
  • MalDev/43-Remote Mapping Injection.pdf 631.0 kB
  • MalDev/82-Introduction to EDRs.pdf 562.4 kB
  • Maldev Modules/1.Welcome Module_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/2.Introduction To Malware Development_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/3.Required Tools_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/4.Coding Basics_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/5.Windows Architecture_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/6.Windows Memory Management_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/7.Introduction To The Windows API_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/8.Portable Executable Format_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/9.Dynamic-Link Library_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/10.Detection Mechanisms_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/11.Windows Processes_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/12.Undocumented Structures_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/13.Payload Placement - .data & .rdata Sections_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/14.Payload Placement - .text Section_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/15.Payload Placement - .rsrc Section_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/16.Introduction To Payload Encryption_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/17.Payload Encryption - XOR_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/18.Payload Encryption - RC4_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/19.Payload Encryption - AES Encryption_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/20.Evading Microsoft Defender Static Analysis_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/21.Payload Obfuscation - IPv4_IPv6Fuscation_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/22.Payload Obfuscation - MACFucscation_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/23.Payload Obfuscation - UUIDFuscation_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/24.Maldev Academy Tool - HellShell_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/25.Maldev Academy Tool - MiniShell_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/26.Local Payload Execution - DLL_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/27.Local Payload Execution - Shellcode_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/28.Process Injection - DLL Injection_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/29.Process Injection - Shellcode Injection_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/30.Payload Staging - Web Server_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/31.Payload Staging - Windows Registry_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/32.Malware Binary Signing_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/33.Process Enumeration - EnumProcesses_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/34.Process Enumeration - NtQuerySystemInformation_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/35.Thread Hijacking - Local Thread Creation_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/36.Thread Hijacking - Remote Thread Creation_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/37.Thread Hijacking - Local Thread Enumeration_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/38.Thread Hijacking - Remote Thread Enumeration_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/39.APC Injection_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/40.Early Bird APC Injection_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/41.Callback Code Execution_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/42.Local Mapping Injection_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/43.Remote Mapping Injection_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/44.Local Function Stomping Injection_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/45.Remote Function Stomping Injection_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/46.Payload Execution Control_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/47.Spoofing PPID_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/48.Process Argument Spoofing (1)_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/49.Process Argument Spoofing (2)_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/50.Parsing PE Headers_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/51.String Hashing_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/52.IAT Hiding & Obfuscation - Introduction_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/53.IAT Hiding & Obfuscation - Custom GetProcAddress_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/54.IAT Hiding & Obfuscation - Custom GetModuleHandle_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/55.IAT Hiding & Obfuscation - API Hashing_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/56.IAT Hiding & Obfuscation - Custom Pseudo Handles_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/57.IAT Hiding & Obfuscation - Compile Time API Hashing_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/58.API Hooking - Introduction_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/59.API Hooking - Detours Library_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/60.API Hooking - Minhook Library_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/61.API Hooking - Custom Code_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/62.API Hooking - Using Windows APIs_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/63.Syscalls - Introduction_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/64.Syscalls - Userland Hooking_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/65.Syscalls - SysWhispers_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/66.Syscalls - Hell's Gate_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/67.Syscalls - Reimplementing Classic Injection_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/68.Syscalls - Reimplementing Mapping Injection_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/69.Syscalls - Reimplementing APC Injection_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/70.Anti-Analysis - Introduction_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/71.Anti-Debugging - Multiple Techniques_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/72.Anti-Debugging - Self-Deletion_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/73.Anti-Virtual Environments - Multiple Techniques_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/74.Anti-Virtual Environments - Multiple Delay Execution Techniques_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/75.Anti-Virtual Environments - API Hammering_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/76.Binary Entropy Reduction_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/77.Brute Force Decryption_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/78.MalDev Academy Tool - KeyGuard_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/80.IAT Camouflage_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/81.Bypassing AVs_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/82.Introduction To EDRs_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/83.NTDLL Unhooking - Introduction_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/84.NTDLL Unhooking - From Disk_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/85.NTDLL Unhooking - From KnownDlls Directory_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/86.NTDLL Unhooking - From a Suspended Process_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/87.NTDLL Unhooking - From a Web Server_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/88.Updating Hell's Gate_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/89.Indirect Syscalls - HellsHall_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/90.Block DLL Policy_files/app.5f3af5ce.js 562.4 kB
  • Maldev Modules/91.Diving Into NtCreateUserProcess_files/app.5f3af5ce.js 562.4 kB
  • MalDev/9-Dynamic-Link Library DLL.pdf 556.7 kB
  • MalDev/71-Anti-Debugging - Multiple Techniques.pdf 546.9 kB
  • MalDev/53-IAT Hiding Obfuscation - Custom GetProcAddress.pdf 538.7 kB
  • Maldev Modules/76.Binary Entropy Reduction_files/entropy-reduction-123023359-a3cbf186-3de6-4628-b920-1d7a8efd.png 531.1 kB
  • MalDev/59-API Hooking - Detours Library.pdf 503.5 kB
  • MalDev/54-IAT Hiding Obfuscation - Custom GetModuleHandle.pdf 501.8 kB
  • MalDev/48-Process Argument Spoofing 1.pdf 500.3 kB
  • MalDev/60-API Hooking - Minhook Library.pdf 495.4 kB
  • MalDev/30-Payload Staging - Web Server.pdf 490.3 kB
  • MalDev/57-IAT Hiding Obfuscation - Compile Time API Hashing.pdf 481.5 kB
  • MalDev/3-Required Tools.pdf 479.1 kB
  • MalDev/62-API Hooking - Using Windows APIs.pdf 465.2 kB
  • Maldev Modules/20.Evading Microsoft Defender Static Analysis_files/aes-shellcode-defender.png 462.7 kB
  • Maldev Modules/20.Evading Microsoft Defender Static Analysis_files/xor-shellcode-defender.png 447.3 kB
  • MalDev/72-Anti-Debugging - Self-Deletion.pdf 446.4 kB
  • MalDev/23-Payload Obfuscation - UUIDFuscation.pdf 445.4 kB
  • MalDev/42-Local Mapping Injection.pdf 443.1 kB
  • Maldev Modules/15.Payload Placement - .rsrc Section_files/rsrc-7.png 432.4 kB
  • MalDev/73-Anti-Virtual Environments - Multiple Techniques.pdf 429.8 kB
  • MalDev/47-Spoofing PPID.pdf 428.4 kB
  • MalDev/51-String Hashing.pdf 425.5 kB
  • MalDev/65-Syscalls - SysWhispers.pdf 423.6 kB
  • MalDev/39-APC Injection.pdf 417.7 kB
  • MalDev/14-Payload Placement - text Section.pdf 411.0 kB
  • MalDev/49-Process Argument Spoofing 2.pdf 394.2 kB
  • MalDev/77-Brute Force Decryption.pdf 388.9 kB
  • MalDev/36-Thread Hijacking - Remote Thread Creation.pdf 369.9 kB
  • MalDev/50-Parsing PE Headers.pdf 365.9 kB
  • MalDev/33-Process Enumeration - EnumProcesses.pdf 352.6 kB
  • MalDev/22-Payload Obfuscation - MACFuscation.pdf 351.3 kB
  • MalDev/40-Early Bird APC Injection.pdf 346.0 kB
  • MalDev/38-Thread Hijacking - Remote Thread Enumeration.pdf 345.3 kB
  • Maldev Modules/15.Payload Placement - .rsrc Section_files/rsrc-payload.png 342.7 kB
  • Maldev Modules/69.Syscalls - Reimplementing APC Injection_files/syscall-apc-114387928-a6054f8c-8590-49cb-a97e-6eb4d7e2870e.png 336.1 kB
  • MalDev/18-Payload Encryption - RC4.pdf 334.9 kB
  • MalDev/64-Syscalls - Userland Hooking.pdf 331.6 kB
  • Maldev Modules/13.Payload Placement - .data & .rdata Sections_files/dumpbin-2.png 327.3 kB
  • MalDev/34-Process Enumeration - NtQuerySystemInformation.pdf 326.1 kB
  • MalDev/63-Syscalls - Introduction.pdf 319.2 kB
  • MalDev/55-IAT Hiding Obfuscation - API Hashing.pdf 318.2 kB
  • MalDev/83-NTDLL Unhooking - Introduction.pdf 317.7 kB
  • MalDev/80-IAT Camouflage.pdf 317.2 kB
  • MalDev/35-Thread Hijacking - Local Thread Creation.pdf 316.7 kB
  • Maldev Modules/88.Updating Hell's Gate_files/hellsgate-update-12.png 312.5 kB
  • MalDev/37-Thread Hijacking - Local Thread Enumeration.pdf 307.5 kB
  • MalDev/26-Local Payload Execution - DLL.pdf 304.0 kB
  • MalDev/Challenges/01-BaseN.zip 302.8 kB
  • MalDev/66-Syscalls - Hells Gate.pdf 300.9 kB
  • Maldev Modules/20.Evading Microsoft Defender Static Analysis_files/rc4-shellcode-defender.png 298.5 kB
  • MalDev/75-Anti-Virtual Environments - API Hammering.pdf 297.5 kB
  • MalDev/5-Windows Architecture.pdf 292.6 kB
  • Maldev Modules/31.Payload Staging - Windows Registry_files/registry-read-demo-3.png 290.9 kB
  • MalDev/8-Portable Executable Format.pdf 290.1 kB
  • Maldev Modules/69.Syscalls - Reimplementing APC Injection_files/syscall-apc-214388088-5de280c3-8fd2-4546-9127-c058c373757b.png 287.8 kB
  • Maldev Modules/15.Payload Placement - .rsrc Section_files/rsrc-tmpbuffer.png 284.5 kB
  • MalDev/Module 8 - Bring-Your-Own-File-Extension.zip 281.3 kB
  • Maldev Modules/67.Syscalls - Reimplementing Classic Injection_files/syscalls-classic-914361542-8212a53a-8c06-4a9f-ba93-4bf8add3a.png 281.2 kB
  • MalDev/74-Anti-Virtual Environments - Multiple Delay Execution Techniques.pdf 280.2 kB
  • Maldev Modules/68.Syscalls - Reimplementing Mapping Injection_files/syscall-mapping-214533288-cc53802f-345d-4eb3-896a-fb4d7dc61b.png 276.3 kB
  • MalDev/32-Malware Binary Signing.pdf 271.4 kB
  • Maldev Modules/88.Updating Hell's Gate_files/hellsgate-update-11.png 270.1 kB
  • Maldev Modules/67.Syscalls - Reimplementing Classic Injection_files/syscalls-classic-714361294-3e6b766a-57cc-4a05-b788-fe53e9cdc.png 269.2 kB
  • MalDev/4-Coding Basics.pdf 268.5 kB
  • Maldev Modules/68.Syscalls - Reimplementing Mapping Injection_files/syscall-mapping-314533763-efe02370-e08e-4d13-9c4c-884931855b.png 267.0 kB
  • Maldev Modules/68.Syscalls - Reimplementing Mapping Injection_files/syscall-mapping-514534407-34d19c71-70d1-4669-99c0-6b3ce6a64d.png 262.4 kB
  • Maldev Modules/45.Remote Function Stomping Injection_files/remote-stomp-509445038-6bb55397-dbac-4546-b1d7-2a7be0744c8a.png 260.8 kB
  • Maldev Modules/68.Syscalls - Reimplementing Mapping Injection_files/syscall-mapping-414534077-da2c3b3e-fcac-4691-9e1e-261b6380e7.png 259.8 kB
  • Maldev Modules/29.Process Injection - Shellcode Injection_files/remote-shellcode-injection-8.png 253.3 kB
  • Maldev Modules/67.Syscalls - Reimplementing Classic Injection_files/syscalls-classic-814362613-395c4f9f-05c5-4a0a-9325-4f2deedaf.png 252.4 kB
  • MalDev/7-Introduction To The Windows API.pdf 251.8 kB
  • Maldev Modules/67.Syscalls - Reimplementing Classic Injection_files/syscalls-classic-9214363039-c409bb06-27a1-433e-a06b-3617828b.png 242.7 kB
  • Maldev Modules/27.Local Payload Execution - Shellcode_files/local-shellcode-injection-5.png 239.1 kB
  • Maldev Modules/90.Block DLL Policy_files/block-dll-319450939-a6401c36-a633-4068-871e-6e3ea6768da4.png 233.4 kB
  • Maldev Modules/22.Payload Obfuscation - MACFucscation_files/macfuscation.png 231.5 kB
  • Maldev Modules/21.Payload Obfuscation - IPv4_IPv6Fuscation_files/ipv6fuscation.png 227.8 kB
  • MalDev/46-Payload Execution Control.pdf 227.0 kB
  • Maldev Modules/43.Remote Mapping Injection_files/remote-map-409431570-6cd31d0b-0dee-4930-97d3-5124112c3e77.png 224.0 kB
  • MalDev/25-Maldev Academy Tool - MiniShell.pdf 223.2 kB
  • Maldev Modules/25.Maldev Academy Tool - MiniShell_files/minishell-updated.png 222.9 kB
  • Maldev Modules/19.Payload Encryption - AES Encryption_files/encryption-new-225953480-03161b1a-119f-4c97-9b9e-11745047a21.png 222.8 kB
  • Maldev Modules/89.Indirect Syscalls - HellsHall_files/indirect-syscalls-319330695-e31df2e8-be16-4b00-a1b7-81fd36bf.png 221.7 kB
  • Maldev Modules/88.Updating Hell's Gate_files/hellsgate-update-418994573-eaf74f3a-647c-44a2-9ce2-ac97916a9.png 220.8 kB
  • Maldev Modules/23.Payload Obfuscation - UUIDFuscation_files/uuidfuscation.png 218.7 kB
  • Maldev Modules/89.Indirect Syscalls - HellsHall_files/indirect-syscalls-719334094-24709fd0-3009-44af-bef7-acf53e0c.png 218.7 kB
  • Maldev Modules/19.Payload Encryption - AES Encryption_files/encryption-new-225952410-4a747a9a-ef94-479c-be3b-d6ae5e8de27.png 217.9 kB
  • Maldev Modules/13.Payload Placement - .data & .rdata Sections_files/dumpbin-1.png 217.0 kB
  • Maldev Modules/90.Block DLL Policy_files/block-dll-219450935-66de904e-890a-40f4-87ef-d521b44ab53d.png 212.9 kB
  • Maldev Modules/21.Payload Obfuscation - IPv4_IPv6Fuscation_files/ipv4fuscation.png 212.5 kB
  • Maldev Modules/86.NTDLL Unhooking - From a Suspended Process_files/ntdll-suspended-process-218648672-32764e8b-364c-43a0-8dd7-b3.png 212.1 kB
  • Maldev Modules/27.Local Payload Execution - Shellcode_files/local-shellcode-injection-3.png 211.3 kB
  • Maldev Modules/89.Indirect Syscalls - HellsHall_files/indirect-syscalls-619334089-413a5cbd-32fb-457b-8546-6f5f2036.png 210.8 kB
  • Maldev Modules/88.Updating Hell's Gate_files/hellsgate-update-13.png 209.5 kB
  • MalDev/24-Maldev Academy Tool - HellShell.pdf 208.5 kB
  • Maldev Modules/51.String Hashing_files/string-hashing-020876979-d3fbb005-d0d5-4624-a302-9f0f0469d86.png 207.9 kB
  • Maldev Modules/88.Updating Hell's Gate_files/hellsgate-update-14.png 207.9 kB
  • Maldev Modules/44.Local Function Stomping Injection_files/stomp-209438901-b436065b-17a9-43b2-86a9-da708329b4c7.png 205.7 kB
  • Maldev Modules/83.NTDLL Unhooking - Introduction_files/ntdll-unhooking-intro-118247087-fa554dbf-e85f-4d02-b855-2dce.png 203.3 kB
  • Maldev Modules/13.Payload Placement - .data & .rdata Sections_files/data-section.png 203.0 kB
  • Maldev Modules/14.Payload Placement - .text Section_files/text-section.png 202.3 kB
  • Maldev Modules/81.Bypassing AVs_files/av-bypass-13.png 201.3 kB
  • Maldev Modules/87.NTDLL Unhooking - From a Web Server_files/ntdll-unhooking-server-818817840-42eb37ed-c3fb-4bfc-a990-a79.png 201.0 kB
  • Maldev Modules/77.Brute Force Decryption_files/bruteforce-decryption-215972490-3457c0b5-833b-477d-a95d-ead9.png 199.1 kB
  • Maldev Modules/84.NTDLL Unhooking - From Disk_files/ntdll-unhooking-disk-618457520-f7c9130c-70bb-48a1-ab62-7c875.png 197.1 kB
  • Maldev Modules/44.Local Function Stomping Injection_files/stomp-309438902-a96c9c50-7ac1-42f9-918f-992a2ef749d6.png 193.4 kB
  • Maldev Modules/6.Windows Memory Management_files/memory-mgmt-424394866-a0dead3a-b72b-4600-8003-b8ecc2a27449.png 190.5 kB
  • Maldev Modules/44.Local Function Stomping Injection_files/stomp-109438900-53f68143-4143-4be4-978c-4c38e9b4f0d4.png 190.5 kB
  • Maldev Modules/15.Payload Placement - .rsrc Section_files/rsrc-8.png 190.2 kB
  • Maldev Modules/45.Remote Function Stomping Injection_files/remote-stomp-209445031-a0b9b825-93f8-429c-a6eb-5dc4e276e2df.png 189.7 kB
  • Maldev Modules/87.NTDLL Unhooking - From a Web Server_files/ntdll-unhooking-server-11.png 189.7 kB
  • Maldev Modules/91.Diving Into NtCreateUserProcess_files/ntcreateuserprocess-119551140-8b599665-05e6-44b7-829c-fc1d43.jpg 189.3 kB
  • Maldev Modules/6.Windows Memory Management_files/memory-mgmt-524394895-7c747075-d866-4ca8-a15f-09cb4fec7e6d.png 188.6 kB
  • MalDev/41-Callback Code Execution.pdf 187.5 kB
  • Maldev Modules/29.Process Injection - Shellcode Injection_files/remote-shellcode-injection-5.png 186.9 kB
  • Maldev Modules/87.NTDLL Unhooking - From a Web Server_files/ntdll-unhooking-server-10.png 185.3 kB
  • Maldev Modules/31.Payload Staging - Windows Registry_files/registry-read-demo-1.png 185.0 kB
  • Maldev Modules/29.Process Injection - Shellcode Injection_files/remote-shellcode-injection-6.png 184.4 kB
  • Maldev Modules/84.NTDLL Unhooking - From Disk_files/ntdll-unhooking-disk-418457505-d1001776-7d96-4177-9320-4fa80.png 183.7 kB
  • Maldev Modules/53.IAT Hiding & Obfuscation - Custom GetProcAddress_files/custom-getproc-209914072-4c8104f3-6208-42c4-8822-479c44d291c.png 183.2 kB
  • Maldev Modules/27.Local Payload Execution - Shellcode_files/local-shellcode-injection-1.png 182.9 kB
  • Maldev Modules/43.Remote Mapping Injection_files/remote-map-309431587-6d988463-f0aa-4cc2-8252-1b0d1426af2d.png 182.1 kB
  • Maldev Modules/86.NTDLL Unhooking - From a Suspended Process_files/ntdll-suspended-process-618679699-59d3f22d-e8a0-4d1d-9a61-85.png 181.4 kB
  • MalDev/56-IAT Hiding Obfuscation - Custom Pseudo Handles.pdf 180.5 kB
  • MalDev/12-Undocumented Structures.pdf 180.3 kB
  • Maldev Modules/43.Remote Mapping Injection_files/remote-map-209431586-0863ea8b-fa83-486b-aeac-ff718f759de7.png 177.9 kB
  • Maldev Modules/29.Process Injection - Shellcode Injection_files/remote-shellcode-injection-4.png 177.0 kB
  • Maldev Modules/85.NTDLL Unhooking - From KnownDlls Directory_files/ntdll-unhooking-knowndlls-518529888-b486838f-b284-46e5-83d4-.png 174.1 kB
  • Maldev Modules/86.NTDLL Unhooking - From a Suspended Process_files/ntdll-suspended-process-418679690-a8faac4b-bb48-4d37-939d-70.png 170.5 kB
  • Maldev Modules/61.API Hooking - Custom Code_files/custom-trampoline-113731211-c0c71ee9-93b5-4e56-811e-b9595193.png 170.2 kB
  • Maldev Modules/1.Welcome Module_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/2.Introduction To Malware Development_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/3.Required Tools_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/4.Coding Basics_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/5.Windows Architecture_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/6.Windows Memory Management_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/7.Introduction To The Windows API_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/8.Portable Executable Format_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/9.Dynamic-Link Library_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/10.Detection Mechanisms_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/11.Windows Processes_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/12.Undocumented Structures_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/13.Payload Placement - .data & .rdata Sections_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/14.Payload Placement - .text Section_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/15.Payload Placement - .rsrc Section_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/16.Introduction To Payload Encryption_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/17.Payload Encryption - XOR_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/18.Payload Encryption - RC4_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/19.Payload Encryption - AES Encryption_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/20.Evading Microsoft Defender Static Analysis_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/21.Payload Obfuscation - IPv4_IPv6Fuscation_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/22.Payload Obfuscation - MACFucscation_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/23.Payload Obfuscation - UUIDFuscation_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/24.Maldev Academy Tool - HellShell_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/25.Maldev Academy Tool - MiniShell_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/26.Local Payload Execution - DLL_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/27.Local Payload Execution - Shellcode_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/28.Process Injection - DLL Injection_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/29.Process Injection - Shellcode Injection_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/30.Payload Staging - Web Server_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/31.Payload Staging - Windows Registry_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/32.Malware Binary Signing_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/33.Process Enumeration - EnumProcesses_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/34.Process Enumeration - NtQuerySystemInformation_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/35.Thread Hijacking - Local Thread Creation_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/36.Thread Hijacking - Remote Thread Creation_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/37.Thread Hijacking - Local Thread Enumeration_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/38.Thread Hijacking - Remote Thread Enumeration_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/39.APC Injection_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/40.Early Bird APC Injection_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/41.Callback Code Execution_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/42.Local Mapping Injection_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/43.Remote Mapping Injection_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/44.Local Function Stomping Injection_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/45.Remote Function Stomping Injection_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/46.Payload Execution Control_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/47.Spoofing PPID_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/48.Process Argument Spoofing (1)_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/49.Process Argument Spoofing (2)_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/50.Parsing PE Headers_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/51.String Hashing_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/52.IAT Hiding & Obfuscation - Introduction_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/53.IAT Hiding & Obfuscation - Custom GetProcAddress_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/54.IAT Hiding & Obfuscation - Custom GetModuleHandle_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/55.IAT Hiding & Obfuscation - API Hashing_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/56.IAT Hiding & Obfuscation - Custom Pseudo Handles_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/57.IAT Hiding & Obfuscation - Compile Time API Hashing_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/58.API Hooking - Introduction_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/59.API Hooking - Detours Library_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/60.API Hooking - Minhook Library_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/61.API Hooking - Custom Code_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/62.API Hooking - Using Windows APIs_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/63.Syscalls - Introduction_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/64.Syscalls - Userland Hooking_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/65.Syscalls - SysWhispers_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/66.Syscalls - Hell's Gate_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/67.Syscalls - Reimplementing Classic Injection_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/68.Syscalls - Reimplementing Mapping Injection_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/69.Syscalls - Reimplementing APC Injection_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/70.Anti-Analysis - Introduction_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/71.Anti-Debugging - Multiple Techniques_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/72.Anti-Debugging - Self-Deletion_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/73.Anti-Virtual Environments - Multiple Techniques_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/74.Anti-Virtual Environments - Multiple Delay Execution Techniques_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/75.Anti-Virtual Environments - API Hammering_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/76.Binary Entropy Reduction_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/77.Brute Force Decryption_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/78.MalDev Academy Tool - KeyGuard_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/80.IAT Camouflage_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/81.Bypassing AVs_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/82.Introduction To EDRs_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/83.NTDLL Unhooking - Introduction_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/84.NTDLL Unhooking - From Disk_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/85.NTDLL Unhooking - From KnownDlls Directory_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/86.NTDLL Unhooking - From a Suspended Process_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/87.NTDLL Unhooking - From a Web Server_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/88.Updating Hell's Gate_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/89.Indirect Syscalls - HellsHall_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/90.Block DLL Policy_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/91.Diving Into NtCreateUserProcess_files/app.4474f4d1.css 168.2 kB
  • Maldev Modules/3.Required Tools_files/msfvenom-intro.png 168.0 kB
  • Maldev Modules/62.API Hooking - Using Windows APIs_files/windows-hooks-1223195943-e2c26fe0-45e5-4ef2-b10c-fcadf193352.png 166.9 kB
  • Maldev Modules/29.Process Injection - Shellcode Injection_files/remote-shellcode-injection-7.png 164.7 kB
  • Maldev Modules/44.Local Function Stomping Injection_files/stomp-409438904-bfacfa89-e6cb-4903-9cd1-7a55c9b66697.png 163.5 kB
  • MalDev/Module 27 - BYOVD.zip 161.1 kB
  • Maldev Modules/82.Introduction To EDRs_files/intro-edr-320010420-0de272ee-4b02-4394-b79f-6bd29770d8da.png 161.0 kB
  • Maldev Modules/84.NTDLL Unhooking - From Disk_files/ntdll-unhooking-disk-10.png 160.5 kB
  • Maldev Modules/84.NTDLL Unhooking - From Disk_files/ntdll-unhooking-disk-518457513-3ccc44f1-e96f-489c-a4fb-a4f45.png 158.9 kB
  • Maldev Modules/84.NTDLL Unhooking - From Disk_files/ntdll-unhooking-disk-918459862-619987f0-38ee-48c7-90f3-45b50.png 158.9 kB
  • MalDev/11-Windows Processes.pdf 158.4 kB
  • Maldev Modules/86.NTDLL Unhooking - From a Suspended Process_files/ntdll-suspended-process-518679693-f19b0159-5abb-4c98-88c0-09.png 158.0 kB
  • Maldev Modules/63.Syscalls - Introduction_files/syscall-intro-221095509-588e2694-4323-4de4-a929-01a0fc209ff0.png 157.9 kB
  • Maldev Modules/60.API Hooking - Minhook Library_files/minhook-213692909-51d8413a-eb9a-44a3-b59c-a43fc6fa5113.png 157.9 kB
  • Maldev Modules/45.Remote Function Stomping Injection_files/remote-stomp-309445021-d9ccc1af-1eb5-4e9e-ba62-8f67b3442c90.png 157.8 kB
  • Maldev Modules/24.Maldev Academy Tool - HellShell_files/hellshell.png 155.8 kB
  • Maldev Modules/60.API Hooking - Minhook Library_files/minhook-113692839-29b30634-f82b-49a1-9bbc-9a27277431b2.png 155.4 kB
  • Maldev Modules/31.Payload Staging - Windows Registry_files/registry-read-demo-2.png 155.1 kB
  • Maldev Modules/85.NTDLL Unhooking - From KnownDlls Directory_files/ntdll-unhooking-knowndlls-318529838-7c90c7e7-efd9-4dcb-965f-.png 154.6 kB
  • Maldev Modules/81.Bypassing AVs_files/av-bypass-316782324-aafb32f5-4fec-40e0-bbb3-029ead10c99d.png 153.2 kB
  • Maldev Modules/76.Binary Entropy Reduction_files/entropy-reduction-323049334-8251f557-fc19-4eb4-92e8-f2bfb45e.png 153.0 kB
  • Maldev Modules/83.NTDLL Unhooking - Introduction_files/ntdll-unhooking-intro-218247984-f05b2000-b273-433a-8a71-7405.png 152.9 kB
  • Maldev Modules/61.API Hooking - Custom Code_files/custom-trampoline-313731997-b35bff75-14b3-4b32-96d7-91313205.png 152.2 kB
  • MalDev/10-Detection Mechanisms.pdf 151.9 kB
  • Maldev Modules/89.Indirect Syscalls - HellsHall_files/indirect-syscalls-519334085-48c45634-cf64-478d-9091-932eb275.png 151.5 kB
  • Maldev Modules/89.Indirect Syscalls - HellsHall_files/indirect-syscalls-819334105-80f7d3a7-1de2-45bd-81e3-e2703efd.png 148.8 kB
  • Maldev Modules/84.NTDLL Unhooking - From Disk_files/ntdll-unhooking-disk-718459846-589d3a07-a934-4d32-bbdb-45bb2.png 148.2 kB
  • Maldev Modules/81.Bypassing AVs_files/av-bypass-616804411-39794aab-14d5-439c-9f30-2ed26efe8dce.png 147.7 kB
  • Maldev Modules/89.Indirect Syscalls - HellsHall_files/indirect-syscalls-419334075-bc9f1b1c-0c8c-49e4-988d-153d35a7.png 145.1 kB
  • Maldev Modules/85.NTDLL Unhooking - From KnownDlls Directory_files/ntdll-unhooking-knowndlls-418529851-010d8412-8dce-4855-bfb8-.png 144.9 kB
  • Maldev Modules/45.Remote Function Stomping Injection_files/remote-stomp-409445036-d03ad29c-8eb0-4b5a-b166-bd30458dbe1a.png 144.6 kB
  • MalDev/52-IAT Hiding Obfuscation - Introduction.pdf 143.8 kB
  • Maldev Modules/28.Process Injection - DLL Injection_files/remote-dll-injection-5.png 143.8 kB
  • Maldev Modules/82.Introduction To EDRs_files/intro-edr-419941044-badc629b-fa34-4dfc-95e4-db9f22c94612.png 143.6 kB
  • Maldev Modules/81.Bypassing AVs_files/av-bypass-216782299-f2e9c796-2d79-42e9-b69d-6e4277f531f4.png 143.5 kB
  • Maldev Modules/81.Bypassing AVs_files/av-bypass-416782441-c87f902c-af70-4657-ad39-93d2f977673b.png 143.2 kB
  • Maldev Modules/53.IAT Hiding & Obfuscation - Custom GetProcAddress_files/custom-getproc-109913387-f0fdcc3d-e9aa-48f3-bb97-615758130ba.png 142.9 kB
  • Maldev Modules/61.API Hooking - Custom Code_files/custom-trampoline-513732042-e95b475c-72ed-4797-b8e5-4d7cb545.png 142.3 kB
  • Maldev Modules/27.Local Payload Execution - Shellcode_files/local-shellcode-injection-2.png 142.1 kB
  • Maldev Modules/29.Process Injection - Shellcode Injection_files/remote-shellcode-injection-2.png 141.4 kB
  • Maldev Modules/28.Process Injection - DLL Injection_files/remote-dll-injection-3.png 141.2 kB
  • Maldev Modules/81.Bypassing AVs_files/av-bypass-516782392-ec8ace35-58fe-4ac6-8317-9d553123076b.png 141.1 kB
  • Maldev Modules/60.API Hooking - Minhook Library_files/minhook-313692968-0b322f31-7913-48b2-95bf-15e5088aa0af.png 140.1 kB
  • Maldev Modules/27.Local Payload Execution - Shellcode_files/local-shellcode-injection-4.png 139.0 kB
  • Maldev Modules/27.Local Payload Execution - Shellcode_files/local-shellcode-injection-6.png 138.6 kB
  • Maldev Modules/29.Process Injection - Shellcode Injection_files/remote-shellcode-injection-3.png 137.4 kB
  • Maldev Modules/40.Early Bird APC Injection_files/demo-209330277-04b3a674-e5f7-41b1-95a3-423e34d2f5aa.png 137.3 kB
  • Maldev Modules/15.Payload Placement - .rsrc Section_files/rsrc-1.png 136.0 kB
  • Maldev Modules/Modules.htm 135.5 kB
  • Maldev Modules/61.API Hooking - Custom Code_files/custom-trampoline-413732637-5e2985c7-2bda-4e75-98c4-9ea6e8c1.png 134.8 kB
  • Maldev Modules/87.NTDLL Unhooking - From a Web Server_files/ntdll-unhooking-server-918817843-e8ec2cca-a951-40e3-af75-141.png 133.8 kB
  • Maldev Modules/72.Anti-Debugging - Self-Deletion_files/self-deletion-215320748-1964cf44-c332-443a-9f52-465aa7ffe9be.png 132.3 kB
  • Maldev Modules/33.Process Enumeration - EnumProcesses_files/enumprocesses-108501303-c0dfa0d8-5e73-431e-9f5f-3cea0bb217be.png 129.2 kB
  • Maldev Modules/88.Updating Hell's Gate_files/hellsgate-update-10.png 127.4 kB
  • Maldev Modules/36.Thread Hijacking - Remote Thread Creation_files/rthread-hijack-108970868-ca84b0fe-ce83-447e-b7a1-4116559bc41.png 125.5 kB
  • Maldev Modules/42.Local Mapping Injection_files/local-map-inject-409427186-264e5199-4331-4578-84bc-c9c9cba45.png 123.0 kB
  • Maldev Modules/91.Diving Into NtCreateUserProcess_files/ntcreateuserprocess-919850979-2cf51837-c6e8-448b-a038-ab24fb.png 122.9 kB
  • Maldev Modules/6.Windows Memory Management_files/virtual-memory.png 122.9 kB
  • Maldev Modules/81.Bypassing AVs_files/av-bypass-10.png 118.9 kB
  • Maldev Modules/28.Process Injection - DLL Injection_files/remote-dll-injection-4.png 118.0 kB
  • Maldev Modules/6.Windows Memory Management_files/memory-mgmt-305293097-6334290e-3d79-4254-9a79-cd7011ca4bbc.png 117.8 kB
  • Maldev Modules/88.Updating Hell's Gate_files/hellsgate-update-919042983-21be24a2-1648-4a06-afe5-d08ededb7.png 116.4 kB
  • MalDev/81-Bypassing-AVs.zip 116.0 kB
  • Maldev Modules/81.Bypassing-AVs.zip 115.4 kB
  • Maldev Modules/15.Payload Placement - .rsrc Section_files/rsrc-2.png 115.2 kB
  • Maldev Modules/81.Bypassing AVs_files/av-bypass-16.png 115.2 kB
  • Maldev Modules/77.Brute Force Decryption_files/bruteforce-decryption-315973990-7836fe71-fbb0-49a1-82e0-dbca.png 114.7 kB
  • Maldev Modules/84.NTDLL Unhooking - From Disk_files/ntdll-unhooking-disk-818459854-9d1de617-884f-441b-85c1-17386.png 114.0 kB
  • MalDev/Challenges/08-LdrApiSetResolveAndMap.zip 113.7 kB
  • MalDev/Challenges/06-LdrSetApiResolve.zip 110.4 kB
  • Maldev Modules/59.API Hooking - Detours Library_files/detours-313692221-be94d5d0-34a4-42a9-9545-a4934e5878ef.png 110.3 kB
  • Maldev Modules/91.Diving Into NtCreateUserProcess_files/ntcreateuserprocess-819850671-388c86f6-beb3-4009-b03d-2854ea.png 110.2 kB
  • Maldev Modules/81.Bypassing AVs_files/av-bypass-17.png 108.0 kB
  • Maldev Modules/49.Process Argument Spoofing (2)_files/spoofing-109614220-d9136e16-4a7e-4ce2-a309-db47577d6f88.png 107.6 kB
  • MalDev/Challenges/09-Shellcode-Stager.zip 107.3 kB
  • MalDev/17-Payload Encryption - XOR.pdf 106.5 kB
  • Maldev Modules/59.API Hooking - Detours Library_files/detours-113692112-13168cc0-dd84-4b71-9c9a-c639b6bcd3e8.png 105.9 kB
  • Maldev Modules/12.Undocumented Structures_files/undocumented-structs-1224531910-413779d5-2e1d-4813-a545-c690.png 104.6 kB
  • Maldev Modules/50.Parsing PE Headers_files/pe-parser-209789466-71cb09b6-7e8f-4694-b9b6-f5064aecfb9c.png 104.5 kB
  • Maldev Modules/42.Local Mapping Injection_files/local-map-inject-309427185-a71d9b01-a6f8-4fd8-be13-25e331ad9.png 103.5 kB
  • MalDev/Challenges/10-Shellcode-Remote-Inject.zip 102.7 kB
  • MalDev/Challenges/04-Shellcode-Solution.zip 102.6 kB
  • MalDev/Challenges/05-Shellcode-Reverse-Shell.zip 102.6 kB
  • Maldev Modules/48.Process Argument Spoofing (1)_files/arg-spoof-309567835-eed3b698-80d0-4a39-ae98-7d2f4120a9a3.png 102.3 kB
  • Maldev Modules/84.NTDLL Unhooking - From Disk_files/ntdll-unhooking-disk-new-4.png 101.6 kB
  • Maldev Modules/49.Process Argument Spoofing (2)_files/spoofing-509622098-ebfd8016-9d4d-413f-929f-53e8465666dd.png 100.4 kB
  • Maldev Modules/15.Payload Placement - .rsrc Section_files/rsrc-3.png 99.2 kB
  • Maldev Modules/71.Anti-Debugging - Multiple Techniques_files/anti-debugging-115282576-1557ca5f-2841-4a0f-ad73-63c30e03c84.png 98.4 kB
  • Maldev Modules/65.Syscalls - SysWhispers_files/syswhispers-314041015-7c969ae9-8b74-46a5-bf36-2c6bbedad332.png 97.6 kB
  • Maldev Modules/89.Indirect Syscalls - HellsHall_files/indirect-syscalls-219308096-e7b35871-ecc6-4b5a-9bf4-b7c33360.png 97.0 kB
  • Maldev Modules/15.Payload Placement - .rsrc Section_files/rsrc-4.png 96.3 kB
  • Maldev Modules/81.Bypassing AVs_files/av-bypass-18.png 96.0 kB
  • Maldev Modules/15.Payload Placement - .rsrc Section_files/rsrc-6.png 95.2 kB
  • MalDev/Module 24 - DLLSideloading1.zip 95.2 kB
  • Maldev Modules/19.Payload Encryption - AES Encryption_files/iat-aes.png 94.7 kB
  • Maldev Modules/6.Windows Memory Management_files/memory-mgmt-205290946-31ab4c35-b0e6-4727-9d45-8e439453207d.png 94.6 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/crt-916075724-73b3ba91-3a72-4f93-9dd8-0ee03cd3fe2d.png 94.1 kB
  • Maldev Modules/38.Thread Hijacking - Remote Thread Enumeration_files/renum-209196664-c43d380c-79ab-48c1-97c9-396c3c2b7c4d.png 93.9 kB
  • Maldev Modules/49.Process Argument Spoofing (2)_files/spoofing-309614553-c8f18edc-301f-4bca-92e6-bf65ae03bddf.png 93.3 kB
  • Maldev Modules/48.Process Argument Spoofing (1)_files/arg-spoof-109550005-441b53e8-9f32-48c3-96a5-56b5b7eb427a.png 92.0 kB
  • Maldev Modules/63.Syscalls - Introduction_files/syscall-intro-321109035-b09edb7e-5ecb-4c6f-96d5-de081603d047.png 91.7 kB
  • Maldev Modules/42.Local Mapping Injection_files/local-map-inject-209424404-c8e38d0c-cf1a-401a-b881-e1d50f0fb.png 91.6 kB
  • Maldev Modules/87.NTDLL Unhooking - From a Web Server_files/ntdll-unhooking-server-418747883-88d09ac7-5a26-4428-858a-5e3.png 91.3 kB
  • Maldev Modules/10.Detection Mechanisms_files/dumpbin-imports.png 90.8 kB
  • Maldev Modules/87.NTDLL Unhooking - From a Web Server_files/ntdll-unhooking-server-118739986-88f6cb96-f2b6-4b20-8b93-7d3.png 90.7 kB
  • Maldev Modules/43.Remote Mapping Injection_files/remote-map-109431584-4f2ef9e2-3d8e-49ce-9998-b9070c566647.png 90.6 kB
  • Maldev Modules/91.Diving Into NtCreateUserProcess_files/ntcreateuserprocess-626114907-67b9501b-6e77-42b2-98a1-f7eac8.png 90.3 kB
  • Maldev Modules/52.IAT Hiding & Obfuscation - Introduction_files/iat-intro-209847024-7ba7fa01-913d-405a-94c1-6cd28adcee51.png 89.7 kB
  • Maldev Modules/1.Welcome Module_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/2.Introduction To Malware Development_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/3.Required Tools_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/4.Coding Basics_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/5.Windows Architecture_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/6.Windows Memory Management_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/7.Introduction To The Windows API_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/8.Portable Executable Format_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/9.Dynamic-Link Library_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/10.Detection Mechanisms_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/11.Windows Processes_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/12.Undocumented Structures_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/13.Payload Placement - .data & .rdata Sections_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/14.Payload Placement - .text Section_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/15.Payload Placement - .rsrc Section_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/16.Introduction To Payload Encryption_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/17.Payload Encryption - XOR_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/18.Payload Encryption - RC4_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/19.Payload Encryption - AES Encryption_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/20.Evading Microsoft Defender Static Analysis_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/21.Payload Obfuscation - IPv4_IPv6Fuscation_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/22.Payload Obfuscation - MACFucscation_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/23.Payload Obfuscation - UUIDFuscation_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/24.Maldev Academy Tool - HellShell_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/25.Maldev Academy Tool - MiniShell_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/26.Local Payload Execution - DLL_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/27.Local Payload Execution - Shellcode_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/28.Process Injection - DLL Injection_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/29.Process Injection - Shellcode Injection_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/30.Payload Staging - Web Server_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/31.Payload Staging - Windows Registry_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/32.Malware Binary Signing_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/33.Process Enumeration - EnumProcesses_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/34.Process Enumeration - NtQuerySystemInformation_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/35.Thread Hijacking - Local Thread Creation_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/36.Thread Hijacking - Remote Thread Creation_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/37.Thread Hijacking - Local Thread Enumeration_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/38.Thread Hijacking - Remote Thread Enumeration_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/39.APC Injection_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/40.Early Bird APC Injection_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/41.Callback Code Execution_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/42.Local Mapping Injection_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/43.Remote Mapping Injection_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/44.Local Function Stomping Injection_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/45.Remote Function Stomping Injection_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/46.Payload Execution Control_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/47.Spoofing PPID_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/48.Process Argument Spoofing (1)_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/49.Process Argument Spoofing (2)_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/50.Parsing PE Headers_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/51.String Hashing_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/52.IAT Hiding & Obfuscation - Introduction_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/53.IAT Hiding & Obfuscation - Custom GetProcAddress_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/54.IAT Hiding & Obfuscation - Custom GetModuleHandle_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/55.IAT Hiding & Obfuscation - API Hashing_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/56.IAT Hiding & Obfuscation - Custom Pseudo Handles_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/57.IAT Hiding & Obfuscation - Compile Time API Hashing_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/58.API Hooking - Introduction_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/59.API Hooking - Detours Library_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/60.API Hooking - Minhook Library_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/61.API Hooking - Custom Code_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/62.API Hooking - Using Windows APIs_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/63.Syscalls - Introduction_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/64.Syscalls - Userland Hooking_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/65.Syscalls - SysWhispers_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/66.Syscalls - Hell's Gate_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/67.Syscalls - Reimplementing Classic Injection_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/68.Syscalls - Reimplementing Mapping Injection_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/69.Syscalls - Reimplementing APC Injection_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/70.Anti-Analysis - Introduction_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/71.Anti-Debugging - Multiple Techniques_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/72.Anti-Debugging - Self-Deletion_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/73.Anti-Virtual Environments - Multiple Techniques_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/74.Anti-Virtual Environments - Multiple Delay Execution Techniques_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/75.Anti-Virtual Environments - API Hammering_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/76.Binary Entropy Reduction_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/77.Brute Force Decryption_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/78.MalDev Academy Tool - KeyGuard_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/80.IAT Camouflage_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/81.Bypassing AVs_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/82.Introduction To EDRs_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/83.NTDLL Unhooking - Introduction_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/84.NTDLL Unhooking - From Disk_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/85.NTDLL Unhooking - From KnownDlls Directory_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/86.NTDLL Unhooking - From a Suspended Process_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/87.NTDLL Unhooking - From a Web Server_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/88.Updating Hell's Gate_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/89.Indirect Syscalls - HellsHall_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/90.Block DLL Policy_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/91.Diving Into NtCreateUserProcess_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/Modules_files/jquery-3.6.0.min.js 89.5 kB
  • Maldev Modules/82.Introduction To EDRs_files/intro-edr-219966477-a29ed0b1-e7af-4e89-8461-98d570ab8e1b.png 89.1 kB
  • Maldev Modules/19.Payload Encryption - AES Encryption_files/iat-no-winapis.png 88.2 kB
  • MalDev/58-API Hooking - Introduction.pdf 87.1 kB
  • Maldev Modules/88.Updating Hell's Gate_files/hellsgate-update-17.png 85.9 kB
  • Maldev Modules/61.API Hooking - Custom Code_files/custom-trampoline-213732622-0d251a96-90b6-43fa-ae02-6bc14b0b.png 85.2 kB
  • Maldev Modules/38.Thread Hijacking - Remote Thread Enumeration_files/renum-309196669-ebbdc23d-e0c2-436c-ac73-70f18c971c3b.png 84.9 kB
  • Maldev Modules/85.NTDLL Unhooking - From KnownDlls Directory_files/ntdll-unhooking-knowndlls-118473010-cd9df141-2f08-47f7-a57e-.png 84.9 kB
  • Maldev Modules/76.Binary Entropy Reduction_files/entropy-reduction-423140943-cb067a49-080a-465d-ba8a-d44941e5.png 84.8 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/crt-116939162-63627c0c-8e3c-4a1f-a7f3-0b2450c9e7dc.png 84.6 kB
  • Maldev Modules/26.Local Payload Execution - DLL_files/create-a-dll.png 82.9 kB
  • Maldev Modules/32.Malware Binary Signing_files/vt-2.png 82.9 kB
  • Maldev Modules/87.NTDLL Unhooking - From a Web Server_files/ntdll-unhooking-server-518748318-85fde875-9b04-4087-99d7-991.png 82.1 kB
  • Maldev Modules/64.Syscalls - Userland Hooking_files/syscalls-userland-hooks-313917466-28dfea35-3e7d-489f-9575-92.png 81.9 kB
  • Maldev Modules/3.Required Tools_files/process-hacker-intro.png 81.6 kB
  • Maldev Modules/15.Payload Placement - .rsrc Section_files/rsrc-5.png 80.9 kB
  • Maldev Modules/86.NTDLL Unhooking - From a Suspended Process_files/ntdll-suspended-process-318679682-0ba9b734-e1e7-4896-90d6-d0.png 80.8 kB
  • Maldev Modules/64.Syscalls - Userland Hooking_files/syscalls-userland-hooks-413917672-f8a15753-f95d-4236-98e0-d5.png 80.8 kB
  • Maldev Modules/59.API Hooking - Detours Library_files/detours-213692174-164b9d16-059a-4587-a4d2-3e264f3ac539.png 80.2 kB
  • Maldev Modules/84.NTDLL Unhooking - From Disk_files/ntdll-unhooking-disk-new-6.png 79.6 kB
  • Maldev Modules/32.Malware Binary Signing_files/vt-1.png 78.8 kB
  • Maldev Modules/5.Windows Architecture_files/windows-arch-flow.png 78.6 kB
  • Maldev Modules/72.Anti-Debugging - Self-Deletion_files/self-deletion-415326977-a40ef9d4-4c54-4c0b-b02c-c3396e24a221.png 78.4 kB
  • Maldev Modules/51.String Hashing_files/string-hashing-109826350-7f0ae4f9-76c6-4293-990a-16ff72de7e0.png 78.3 kB
  • Maldev Modules/91.Diving Into NtCreateUserProcess_files/ntcreateuserprocess-526114852-0ea90178-69cb-4383-98c2-796ffb.png 78.3 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/crt-216062571-e46c5ade-4aa5-4d7f-8d8a-5562af6a5229.png 77.2 kB
  • Maldev Modules/91.Diving Into NtCreateUserProcess_files/ntcreateuserprocess-719850092-b93a1079-dfe7-4a3c-9db5-bc00c3.png 75.6 kB
  • Maldev Modules/81.Bypassing AVs.htm 75.1 kB
  • Maldev Modules/57.IAT Hiding & Obfuscation - Compile Time API Hashing_files/compile-time-hashing-210127200-98154fdf-2810-472c-b3f8-6fa46.png 75.0 kB
  • Maldev Modules/80.IAT Camouflage_files/iat-camo-316322305-990ecd45-33a8-45d7-8f93-826ef0d18ad3.png 74.9 kB
  • Maldev Modules/9.Dynamic-Link Library_files/create-dll-2.png 74.0 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/crt-18.png 74.0 kB
  • MalDev/2-Introduction To Malware Development.pdf 72.9 kB
  • Maldev Modules/3.Required Tools_files/vs-intro.png 72.7 kB
  • Maldev Modules/39.APC Injection_files/apc-demo-1-109284381-1875d55b-1574-4421-b4e9-6f6948a5a316.png 71.3 kB
  • Maldev Modules/84.NTDLL Unhooking - From Disk_files/ntdll-unhooking-disk-218424594-28bea557-3659-4d92-84e2-fc569.png 70.7 kB
  • Maldev Modules/9.Dynamic-Link Library_files/loaded-libraries.png 70.7 kB
  • Maldev Modules/88.Updating Hell's Gate_files/hellsgate-update-819042962-afbc121a-d298-419a-b1e5-89eef05d8.png 70.1 kB
  • Maldev Modules/78.MalDev Academy Tool - KeyGuard_files/keyguard-316007780-4cc95a19-5f8c-48db-99e6-defa90b83820.png 69.8 kB
  • Maldev Modules/82.Introduction To EDRs_files/edr-dashboard.png 69.1 kB
  • Maldev Modules/71.Anti-Debugging - Multiple Techniques_files/anti-debugging-315282633-6d0bf541-7327-42b9-af79-0b9f9489cd6.png 68.8 kB
  • Maldev Modules/39.APC Injection_files/apc-demo-2-209284381-1875d55b-1574-4421-b4e9-6f6948a5a316.png 68.1 kB
  • Maldev Modules/37.Thread Hijacking - Local Thread Enumeration_files/tenum-209188936-9a4de3fe-fd13-4a25-b343-153a59ea894b.png 67.9 kB
  • MalDev/1-Welcome Module.pdf 67.8 kB
  • Maldev Modules/88.Updating Hell's Gate_files/hellsgate-update-619273167-9a251b35-1cb2-477a-80ba-b5ac9c009.png 67.8 kB
  • Maldev Modules/78.MalDev Academy Tool - KeyGuard_files/keyguard-216006045-84544960-079a-4c5c-9ac0-c4e31ba80dbc.png 67.7 kB
  • Maldev Modules/78.MalDev Academy Tool - KeyGuard_files/keyguard-116004022-69d0f001-ad32-4fd2-aec8-669c50c3d93d.png 67.1 kB
  • Maldev Modules/81.Bypassing AVs_files/av-bypass-15.png 66.9 kB
  • Maldev Modules/20.Evading Microsoft Defender Static Analysis_files/raw-shellcode-defender.png 66.9 kB
  • Maldev Modules/81.Bypassing AVs_files/av-bypass-716812124-de717043-aa23-40c9-8058-f0ae0c06f407.png 66.0 kB
  • Maldev Modules/38.Thread Hijacking - Remote Thread Enumeration_files/renum-109196659-5f5a1b94-3074-4774-8271-03a07b5f2c04.png 65.9 kB
  • Maldev Modules/9.Dynamic-Link Library_files/create-dll-3-1.png 65.5 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/crt-316062828-42c68fc5-365a-44f2-ae6b-9849e22aab17.png 65.4 kB
  • Maldev Modules/88.Updating Hell's Gate_files/hellsgate-update-318996340-a18adfb0-0cbe-4ac2-a5cd-b504f8f60.png 64.6 kB
  • Maldev Modules/47.Spoofing PPID_files/ppid-spoofing-409530891-f8b81cc4-8cec-4ffe-b413-debf5f051ae8.png 64.4 kB
  • Maldev Modules/9.Dynamic-Link Library_files/dll-new-221233432-97a38697-bd82-45f8-ad5f-90d674de8b17.png 63.9 kB
  • Maldev Modules/42.Local Mapping Injection_files/local-map-inject-109424404-c8e38d0c-cf1a-401a-b881-e1d50f0fb.png 63.6 kB
  • Maldev Modules/32.Malware Binary Signing_files/sign.png 62.9 kB
  • Maldev Modules/76.Binary Entropy Reduction_files/entropy-reduction-223028955-48be70b5-ea5e-43ab-97fa-904c32dd.png 62.9 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/crt-416058406-95d621d1-1329-47b2-8750-ebbcef912dc8.png 62.7 kB
  • Maldev Modules/81.Bypassing AVs_files/av-bypass-816812885-3a8e28cd-22cb-42f0-9673-9d58ea2471da.png 62.0 kB
  • Maldev Modules/6.Windows Memory Management_files/memory-mgmt-105290746-d5fa58f7-b3d7-4064-98b8-6f7ee5dcc12d.png 61.8 kB
  • Maldev Modules/26.Local Payload Execution - DLL_files/task-manager-dll.png 61.8 kB
  • MalDev/70-Anti-Analysis - Introduction.pdf 61.7 kB
  • Maldev Modules/84.NTDLL Unhooking - From Disk_files/ntdll-unhooking-disk-new-2.png 61.5 kB
  • Maldev Modules/39.APC Injection_files/apc-demo-1-209284381-1875d55b-1574-4421-b4e9-6f6948a5a316.png 61.3 kB
  • Maldev Modules/84.NTDLL Unhooking - From Disk_files/ntdll-unhooking-disk-new-5.png 60.6 kB
  • Maldev Modules/91.Diving Into NtCreateUserProcess.htm 60.5 kB
  • Maldev Modules/5.Windows Architecture_files/arch-diagram.png 59.7 kB
  • Maldev Modules/30.Payload Staging - Web Server_files/staging-demo-1.png 59.7 kB
  • Maldev Modules/87.NTDLL Unhooking - From a Web Server_files/ntdll-unhooking-server-718816620-fdcedd74-65d6-49a9-b7b8-b83.png 59.6 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/crt-23.png 59.0 kB
  • Maldev Modules/35.Thread Hijacking - Local Thread Creation_files/threadhijack-408833616-43a64b68-f30e-466c-a4c6-4d48289c0158.png 58.8 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/crt-27.png 58.3 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/crt-21.png 57.9 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/crt-12.png 57.2 kB
  • Maldev Modules/40.Early Bird APC Injection_files/demo-109330271-93c3e529-dfea-4868-ad56-48ce90efe172.png 56.9 kB
  • Maldev Modules/47.Spoofing PPID_files/demo-109330271-93c3e529-dfea-4868-ad56-48ce90efe172.png 56.9 kB
  • Maldev Modules/9.Dynamic-Link Library_files/create-dll-4.png 56.8 kB
  • Maldev Modules/3.Required Tools_files/pebear-intro.png 56.6 kB
  • Maldev Modules/28.Process Injection - DLL Injection_files/remote-dll-injection-6.png 56.5 kB
  • Maldev Modules/54.IAT Hiding & Obfuscation - Custom GetModuleHandle_files/custom-getmodulehandle-610043506-5d864abe-3528-4e13-bf28-fae.png 56.4 kB
  • Maldev Modules/26.Local Payload Execution - DLL_files/dll-injection-execution.png 56.3 kB
  • Maldev Modules/47.Spoofing PPID_files/ppid-spoofing-209529234-c72226c9-0cf1-401f-b46d-6b32cb1bac25.png 55.6 kB
  • Maldev Modules/40.Early Bird APC Injection_files/demo-309330284-92aec1dc-b899-49a8-a170-f9845cbe5246.png 55.6 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/crt-19.png 55.3 kB
  • Maldev Modules/72.Anti-Debugging - Self-Deletion_files/self-deletion-115320077-5c34dcbb-2e0e-461d-b8e5-a1b34d72b139.png 54.8 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/crt-816073627-98d49140-e86d-4622-88c8-a40f9a9db79c.png 54.3 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/crt-28.png 53.4 kB
  • Maldev Modules/81.Bypassing AVs_files/av-bypass-916815114-a9254939-9382-4dfe-8c32-54f871d9fc47.png 53.0 kB
  • Maldev Modules/81.Bypassing AVs_files/av-bypass-11.png 52.5 kB
  • Maldev Modules/33.Process Enumeration - EnumProcesses_files/enumprocesses-208500959-341d233b-4852-463e-8108-6d6e4c109416.png 52.1 kB
  • Maldev Modules/23.Payload Obfuscation - UUIDFuscation_files/uuid.png 51.8 kB
  • Maldev Modules/85.NTDLL Unhooking - From KnownDlls Directory_files/ntdll-unhooking-knowndlls-218529831-d561ae0a-5e2b-4da9-9eb6-.png 51.2 kB
  • Maldev Modules/64.Syscalls - Userland Hooking_files/syscalls-userland-hooks-113914292-072b98f1-dd82-4ccc-b111-2a.png 50.5 kB
  • Maldev Modules/31.Payload Staging - Windows Registry_files/registry-demo-2.png 50.4 kB
  • Maldev Modules/45.Remote Function Stomping Injection_files/remote-stomp-109445015-30dbf6a1-2ece-4d4c-a304-a9fc12f8f231.png 50.3 kB
  • Maldev Modules/19.Payload Encryption - AES Encryption.htm 50.3 kB
  • Maldev Modules/75.Anti-Virtual Environments - API Hammering_files/api-hammering-215850112-05e21d3e-12a5-45c8-8d0f-31e466a2eae7.png 50.2 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/crt-25.png 50.1 kB
  • MalDev/Module 23 - DllPayloadLoader.zip 49.9 kB
  • Maldev Modules/68.Syscalls - Reimplementing Mapping Injection.htm 49.5 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/crt-15.png 49.4 kB
  • MalDev/Module 31 - PePacker.zip 49.0 kB
  • Maldev Modules/88.Updating Hell's Gate.htm 48.5 kB
  • Maldev Modules/46.Payload Execution Control_files/control-309459160-66750edb-600a-4fef-a1f2-ef2deec92d5e.png 46.7 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/crt-16.png 46.5 kB
  • Maldev Modules/46.Payload Execution Control_files/control-209459157-cda5268b-bd34-47ed-874b-a799e0680fb8.png 46.2 kB
  • Maldev Modules/49.Process Argument Spoofing (2)_files/spoofing-609622288-7f9400eb-100e-490a-a5a6-adbfa2b61f42.png 46.2 kB
  • Maldev Modules/46.Payload Execution Control_files/control-109459156-0c97cf3a-c176-46da-bd31-afb2d2161b9f.png 46.1 kB
  • MalDev/16-Introduction To Payload Encryption.pdf 45.7 kB
  • Maldev Modules/84.NTDLL Unhooking - From Disk_files/ntdll-unhooking-disk-118295799-85ce595b-6772-44bf-b764-0ba03.png 45.0 kB
  • Maldev Modules/64.Syscalls - Userland Hooking_files/syscalls-userland-hooks-213914403-878e7988-5106-49dd-95fd-11.png 44.9 kB
  • Maldev Modules/88.Updating Hell's Gate_files/hellsgate-update-16.png 44.5 kB
  • Maldev Modules/3.Required Tools_files/xdbg-intro.png 44.5 kB
  • Maldev Modules/67.Syscalls - Reimplementing Classic Injection.htm 44.5 kB
  • Maldev Modules/5.Windows Architecture_files/syscall.png 44.4 kB
  • Maldev Modules/31.Payload Staging - Windows Registry_files/registry-demo-3.png 43.9 kB
  • Maldev Modules/5.Windows Architecture_files/createfilew-dbg.png 43.4 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/crt-13.png 43.2 kB
  • Maldev Modules/56.IAT Hiding & Obfuscation - Custom Pseudo Handles_files/pseudo-handle-124505341-1cca443b-e5d2-4d90-8a75-5f77b08bfe56.png 43.2 kB
  • Maldev Modules/81.Bypassing AVs_files/av-bypass-14.png 43.1 kB
  • Maldev Modules/39.APC Injection_files/apc-demo-2-109284381-1875d55b-1574-4421-b4e9-6f6948a5a316.png 42.7 kB
  • Maldev Modules/80.IAT Camouflage_files/iat-camo-116296566-e54ef1c8-582f-4114-8f76-7992d4c69358.png 42.7 kB
  • Maldev Modules/84.NTDLL Unhooking - From Disk_files/ntdll-unhooking-disk-new-3.png 42.6 kB
  • Maldev Modules/9.Dynamic-Link Library_files/create-dll-1.png 42.5 kB
  • Maldev Modules/80.IAT Camouflage_files/iat-camo-216316282-a383829c-9589-4081-a581-9bedc4f4f3f8.png 42.4 kB
  • Maldev Modules/5.Windows Architecture_files/ntcreatefile-dbg.png 42.2 kB
  • Maldev Modules/37.Thread Hijacking - Local Thread Enumeration_files/tenum-109188468-94e7741b-8953-4079-8a7c-8ab3cc449779.png 42.1 kB
  • Maldev Modules/35.Thread Hijacking - Local Thread Creation_files/threadhijack-208833406-0c1bb9f4-9a41-46e0-a2d5-b05f71c6c287.png 41.5 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/crt-14.png 41.4 kB
  • Maldev Modules/84.NTDLL Unhooking - From Disk.htm 41.4 kB
  • Maldev Modules/82.Introduction To EDRs_files/amsi-functions.png 41.2 kB
  • Maldev Modules/53.IAT Hiding & Obfuscation - Custom GetProcAddress_files/custom-getproc-309915517-9f411b29-61c3-4104-9d05-7fa8977ddec.png 41.0 kB
  • Maldev Modules/34.Process Enumeration - NtQuerySystemInformation_files/nt-208666134-5c070d23-50f4-4e1d-978f-11122892a9c3.png 40.1 kB
  • Maldev Modules/89.Indirect Syscalls - HellsHall.htm 40.1 kB
  • Maldev Modules/1.Welcome Module_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/2.Introduction To Malware Development_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/3.Required Tools_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/4.Coding Basics_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/5.Windows Architecture_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/6.Windows Memory Management_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/7.Introduction To The Windows API_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/8.Portable Executable Format_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/9.Dynamic-Link Library_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/10.Detection Mechanisms_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/11.Windows Processes_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/12.Undocumented Structures_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/13.Payload Placement - .data & .rdata Sections_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/14.Payload Placement - .text Section_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/15.Payload Placement - .rsrc Section_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/16.Introduction To Payload Encryption_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/17.Payload Encryption - XOR_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/18.Payload Encryption - RC4_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/19.Payload Encryption - AES Encryption_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/20.Evading Microsoft Defender Static Analysis_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/21.Payload Obfuscation - IPv4_IPv6Fuscation_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/22.Payload Obfuscation - MACFucscation_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/23.Payload Obfuscation - UUIDFuscation_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/24.Maldev Academy Tool - HellShell_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/25.Maldev Academy Tool - MiniShell_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/26.Local Payload Execution - DLL_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/27.Local Payload Execution - Shellcode_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/28.Process Injection - DLL Injection_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/29.Process Injection - Shellcode Injection_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/30.Payload Staging - Web Server_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/31.Payload Staging - Windows Registry_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/32.Malware Binary Signing_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/33.Process Enumeration - EnumProcesses_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/34.Process Enumeration - NtQuerySystemInformation_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/35.Thread Hijacking - Local Thread Creation_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/36.Thread Hijacking - Remote Thread Creation_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/37.Thread Hijacking - Local Thread Enumeration_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/38.Thread Hijacking - Remote Thread Enumeration_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/39.APC Injection_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/40.Early Bird APC Injection_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/41.Callback Code Execution_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/42.Local Mapping Injection_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/43.Remote Mapping Injection_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/44.Local Function Stomping Injection_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/45.Remote Function Stomping Injection_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/46.Payload Execution Control_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/47.Spoofing PPID_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/48.Process Argument Spoofing (1)_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/49.Process Argument Spoofing (2)_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/50.Parsing PE Headers_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/51.String Hashing_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/52.IAT Hiding & Obfuscation - Introduction_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/53.IAT Hiding & Obfuscation - Custom GetProcAddress_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/54.IAT Hiding & Obfuscation - Custom GetModuleHandle_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/55.IAT Hiding & Obfuscation - API Hashing_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/56.IAT Hiding & Obfuscation - Custom Pseudo Handles_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/57.IAT Hiding & Obfuscation - Compile Time API Hashing_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/58.API Hooking - Introduction_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/59.API Hooking - Detours Library_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/60.API Hooking - Minhook Library_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/61.API Hooking - Custom Code_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/62.API Hooking - Using Windows APIs_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/63.Syscalls - Introduction_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/64.Syscalls - Userland Hooking_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/65.Syscalls - SysWhispers_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/66.Syscalls - Hell's Gate_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/67.Syscalls - Reimplementing Classic Injection_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/68.Syscalls - Reimplementing Mapping Injection_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/69.Syscalls - Reimplementing APC Injection_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/70.Anti-Analysis - Introduction_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/71.Anti-Debugging - Multiple Techniques_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/72.Anti-Debugging - Self-Deletion_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/73.Anti-Virtual Environments - Multiple Techniques_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/74.Anti-Virtual Environments - Multiple Delay Execution Techniques_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/75.Anti-Virtual Environments - API Hammering_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/76.Binary Entropy Reduction_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/77.Brute Force Decryption_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/78.MalDev Academy Tool - KeyGuard_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/80.IAT Camouflage_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/81.Bypassing AVs_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/82.Introduction To EDRs_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/83.NTDLL Unhooking - Introduction_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/84.NTDLL Unhooking - From Disk_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/85.NTDLL Unhooking - From KnownDlls Directory_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/86.NTDLL Unhooking - From a Suspended Process_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/87.NTDLL Unhooking - From a Web Server_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/88.Updating Hell's Gate_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/89.Indirect Syscalls - HellsHall_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/90.Block DLL Policy_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/91.Diving Into NtCreateUserProcess_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/Modules_files/bootstrap.min.js 39.7 kB
  • Maldev Modules/89.Indirect Syscalls - HellsHall_files/indirect-syscalls-119305197-c35a0c2c-fc29-4153-ada5-aa88d131.png 38.9 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/crt-716065105-1ba22df8-af64-483a-8a38-803b75bb4ae4.png 38.5 kB
  • Maldev Modules/71.Anti-Debugging - Multiple Techniques.htm 38.5 kB
  • Maldev Modules/28.Process Injection - DLL Injection.htm 37.4 kB
  • Maldev Modules/55.IAT Hiding & Obfuscation - API Hashing_files/api-hashing-110060375-e0d6069b-7538-4b31-add1-92f72003f85c.png 37.4 kB
  • Maldev Modules/57.IAT Hiding & Obfuscation - Compile Time API Hashing_files/compile-time-hashing-610127288-887779b6-b023-4a31-8bc7-e7601.png 37.3 kB
  • Maldev Modules/57.IAT Hiding & Obfuscation - Compile Time API Hashing_files/compile-time-hashing-110127028-dfa23b5b-cc3a-430a-b792-23792.png 37.2 kB
  • Maldev Modules/91.Diving Into NtCreateUserProcess_files/ntcreateuserprocess-419843782-b85fa358-4019-49dd-856f-605170.png 37.2 kB
  • Maldev Modules/88.Updating Hell's Gate_files/hellsgate-update-218996854-1d20335d-ebc6-4c6c-b2a2-e8f584ac8.png 37.2 kB
  • Maldev Modules/91.Diving Into NtCreateUserProcess_files/ntcreateuserprocess-319843814-83b44231-2b26-4236-8764-c0aab5.png 37.2 kB
  • Maldev Modules/91.Diving Into NtCreateUserProcess_files/ntcreateuserprocess-219843832-69179def-33c9-4145-a2cc-5b876d.png 37.1 kB
  • Maldev Modules/50.Parsing PE Headers.htm 37.0 kB
  • Maldev Modules/82.Introduction To EDRs_files/intro-edr-120017985-26bd0e42-0d73-4b1f-81da-b14b76e9efef.png 36.8 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling.htm 36.2 kB
  • Maldev Modules/8.Portable Executable Format.htm 35.7 kB
  • Maldev Modules/57.IAT Hiding & Obfuscation - Compile Time API Hashing_files/compile-time-hashing-410127235-cfc37903-ef42-4ab6-8401-d1a20.png 35.4 kB
  • Maldev Modules/84.NTDLL Unhooking - From Disk_files/ntdll-unhooking-disk-new-1.png 35.4 kB
  • Maldev Modules/68.Syscalls - Reimplementing Mapping Injection_files/syscall-mapping-114492060-65bb4d32-e61b-4489-b768-f4ef662928.png 35.2 kB
  • Maldev Modules/54.IAT Hiding & Obfuscation - Custom GetModuleHandle.htm 34.6 kB
  • Maldev Modules/65.Syscalls - SysWhispers.htm 34.4 kB
  • Maldev Modules/54.IAT Hiding & Obfuscation - Custom GetModuleHandle_files/custom-getmodulehandle-021764060-4bc54cbd-29ea-470a-9402-ac2.png 34.3 kB
  • Maldev Modules/47.Spoofing PPID_files/ppid-spoofing-1209528890-4c267ff2-a7b9-4036-8279-a5af58f067c.png 34.2 kB
  • Maldev Modules/34.Process Enumeration - NtQuerySystemInformation_files/nt-308665154-9c8bdf73-bfb4-40b5-a39f-3b6ee2044076.png 34.2 kB
  • Maldev Modules/31.Payload Staging - Windows Registry_files/registry-img.png 34.2 kB
  • Maldev Modules/28.Process Injection - DLL Injection_files/remote-dll-injection-1.png 34.1 kB
  • Maldev Modules/67.Syscalls - Reimplementing Classic Injection_files/syscalls-classic-214351708-4ba6253b-4713-4fed-8711-e8cb07669.png 33.8 kB
  • Maldev Modules/59.API Hooking - Detours Library.htm 33.7 kB
  • Maldev Modules/54.IAT Hiding & Obfuscation - Custom GetModuleHandle_files/custom-getmodulehandle-210036220-10ef0096-9099-4066-b6a6-5c5.png 33.1 kB
  • Maldev Modules/7.Introduction To The Windows API.htm 33.1 kB
  • Maldev Modules/27.Local Payload Execution - Shellcode.htm 32.8 kB
  • Maldev Modules/9.Dynamic-Link Library_files/create-dll-6.png 32.8 kB
  • Maldev Modules/73.Anti-Virtual Environments - Multiple Techniques.htm 32.6 kB
  • Maldev Modules/30.Payload Staging - Web Server.htm 32.6 kB
  • Maldev Modules/21.Payload Obfuscation - IPv4_IPv6Fuscation.htm 32.4 kB
  • Maldev Modules/87.NTDLL Unhooking - From a Web Server.htm 32.3 kB
  • MalDev/64-MalDevEdr.zip 32.2 kB
  • Maldev Modules/64.MalDevEdr.zip 32.2 kB
  • Maldev Modules/67.Syscalls - Reimplementing Classic Injection_files/syscalls-classic-514353606-1e3d5862-fc03-4247-b03e-493b07f3a.png 32.1 kB
  • Maldev Modules/54.IAT Hiding & Obfuscation - Custom GetModuleHandle_files/msdn-593029583.png 32.0 kB
  • Maldev Modules/69.Syscalls - Reimplementing APC Injection.htm 31.9 kB
  • Maldev Modules/9.Dynamic-Link Library_files/create-dll-5.png 31.6 kB
  • Maldev Modules/74.Anti-Virtual Environments - Multiple Delay Execution Techniques_files/delays-115710473-e0af0c25-7535-41ad-80a9-ac2be198e68f.png 31.1 kB
  • Maldev Modules/1.Welcome Module_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/2.Introduction To Malware Development_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/3.Required Tools_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/4.Coding Basics_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/5.Windows Architecture_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/6.Windows Memory Management_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/7.Introduction To The Windows API_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/8.Portable Executable Format_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/9.Dynamic-Link Library_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/10.Detection Mechanisms_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/11.Windows Processes_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/12.Undocumented Structures_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/13.Payload Placement - .data & .rdata Sections_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/14.Payload Placement - .text Section_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/15.Payload Placement - .rsrc Section_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/16.Introduction To Payload Encryption_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/17.Payload Encryption - XOR_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/18.Payload Encryption - RC4_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/19.Payload Encryption - AES Encryption_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/20.Evading Microsoft Defender Static Analysis_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/21.Payload Obfuscation - IPv4_IPv6Fuscation_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/22.Payload Obfuscation - MACFucscation_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/23.Payload Obfuscation - UUIDFuscation_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/24.Maldev Academy Tool - HellShell_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/25.Maldev Academy Tool - MiniShell_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/26.Local Payload Execution - DLL_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/27.Local Payload Execution - Shellcode_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/28.Process Injection - DLL Injection_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/29.Process Injection - Shellcode Injection_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/30.Payload Staging - Web Server_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/31.Payload Staging - Windows Registry_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/32.Malware Binary Signing_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/33.Process Enumeration - EnumProcesses_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/34.Process Enumeration - NtQuerySystemInformation_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/35.Thread Hijacking - Local Thread Creation_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/36.Thread Hijacking - Remote Thread Creation_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/37.Thread Hijacking - Local Thread Enumeration_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/38.Thread Hijacking - Remote Thread Enumeration_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/39.APC Injection_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/40.Early Bird APC Injection_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/41.Callback Code Execution_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/42.Local Mapping Injection_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/43.Remote Mapping Injection_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/44.Local Function Stomping Injection_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/45.Remote Function Stomping Injection_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/46.Payload Execution Control_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/47.Spoofing PPID_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/48.Process Argument Spoofing (1)_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/49.Process Argument Spoofing (2)_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/50.Parsing PE Headers_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/51.String Hashing_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/52.IAT Hiding & Obfuscation - Introduction_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/53.IAT Hiding & Obfuscation - Custom GetProcAddress_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/54.IAT Hiding & Obfuscation - Custom GetModuleHandle_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/55.IAT Hiding & Obfuscation - API Hashing_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/56.IAT Hiding & Obfuscation - Custom Pseudo Handles_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/57.IAT Hiding & Obfuscation - Compile Time API Hashing_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/58.API Hooking - Introduction_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/59.API Hooking - Detours Library_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/60.API Hooking - Minhook Library_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/61.API Hooking - Custom Code_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/62.API Hooking - Using Windows APIs_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/63.Syscalls - Introduction_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/64.Syscalls - Userland Hooking_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/65.Syscalls - SysWhispers_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/66.Syscalls - Hell's Gate_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/67.Syscalls - Reimplementing Classic Injection_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/68.Syscalls - Reimplementing Mapping Injection_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/69.Syscalls - Reimplementing APC Injection_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/70.Anti-Analysis - Introduction_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/71.Anti-Debugging - Multiple Techniques_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/72.Anti-Debugging - Self-Deletion_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/73.Anti-Virtual Environments - Multiple Techniques_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/74.Anti-Virtual Environments - Multiple Delay Execution Techniques_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/75.Anti-Virtual Environments - API Hammering_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/76.Binary Entropy Reduction_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/77.Brute Force Decryption_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/78.MalDev Academy Tool - KeyGuard_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/80.IAT Camouflage_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/81.Bypassing AVs_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/82.Introduction To EDRs_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/83.NTDLL Unhooking - Introduction_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/84.NTDLL Unhooking - From Disk_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/85.NTDLL Unhooking - From KnownDlls Directory_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/86.NTDLL Unhooking - From a Suspended Process_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/87.NTDLL Unhooking - From a Web Server_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/88.Updating Hell's Gate_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/89.Indirect Syscalls - HellsHall_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/90.Block DLL Policy_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/91.Diving Into NtCreateUserProcess_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/Modules_files/font-awesome.min.css 31.0 kB
  • Maldev Modules/64.Syscalls - Userland Hooking_files/syscalls-userland-hooks-616902643-50621da8-9220-413d-9a46-ff.png 30.8 kB
  • Maldev Modules/53.IAT Hiding & Obfuscation - Custom GetProcAddress.htm 30.6 kB
  • Maldev Modules/48.Process Argument Spoofing (1).htm 30.3 kB
  • Maldev Modules/31.Payload Staging - Windows Registry.htm 30.2 kB
  • Maldev Modules/1.Welcome Module_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/2.Introduction To Malware Development_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/3.Required Tools_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/4.Coding Basics_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/5.Windows Architecture_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/6.Windows Memory Management_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/7.Introduction To The Windows API_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/8.Portable Executable Format_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/9.Dynamic-Link Library_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/10.Detection Mechanisms_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/11.Windows Processes_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/12.Undocumented Structures_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/13.Payload Placement - .data & .rdata Sections_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/14.Payload Placement - .text Section_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/15.Payload Placement - .rsrc Section_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/16.Introduction To Payload Encryption_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/17.Payload Encryption - XOR_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/18.Payload Encryption - RC4_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/19.Payload Encryption - AES Encryption_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/20.Evading Microsoft Defender Static Analysis_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/21.Payload Obfuscation - IPv4_IPv6Fuscation_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/22.Payload Obfuscation - MACFucscation_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/23.Payload Obfuscation - UUIDFuscation_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/24.Maldev Academy Tool - HellShell_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/25.Maldev Academy Tool - MiniShell_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/26.Local Payload Execution - DLL_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/27.Local Payload Execution - Shellcode_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/28.Process Injection - DLL Injection_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/29.Process Injection - Shellcode Injection_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/30.Payload Staging - Web Server_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/31.Payload Staging - Windows Registry_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/32.Malware Binary Signing_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/33.Process Enumeration - EnumProcesses_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/34.Process Enumeration - NtQuerySystemInformation_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/35.Thread Hijacking - Local Thread Creation_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/36.Thread Hijacking - Remote Thread Creation_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/37.Thread Hijacking - Local Thread Enumeration_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/38.Thread Hijacking - Remote Thread Enumeration_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/39.APC Injection_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/40.Early Bird APC Injection_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/41.Callback Code Execution_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/42.Local Mapping Injection_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/43.Remote Mapping Injection_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/44.Local Function Stomping Injection_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/45.Remote Function Stomping Injection_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/46.Payload Execution Control_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/47.Spoofing PPID_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/48.Process Argument Spoofing (1)_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/49.Process Argument Spoofing (2)_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/50.Parsing PE Headers_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/51.String Hashing_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/52.IAT Hiding & Obfuscation - Introduction_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/53.IAT Hiding & Obfuscation - Custom GetProcAddress_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/54.IAT Hiding & Obfuscation - Custom GetModuleHandle_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/55.IAT Hiding & Obfuscation - API Hashing_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/56.IAT Hiding & Obfuscation - Custom Pseudo Handles_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/57.IAT Hiding & Obfuscation - Compile Time API Hashing_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/58.API Hooking - Introduction_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/59.API Hooking - Detours Library_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/60.API Hooking - Minhook Library_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/61.API Hooking - Custom Code_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/62.API Hooking - Using Windows APIs_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/63.Syscalls - Introduction_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/64.Syscalls - Userland Hooking_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/65.Syscalls - SysWhispers_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/66.Syscalls - Hell's Gate_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/67.Syscalls - Reimplementing Classic Injection_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/68.Syscalls - Reimplementing Mapping Injection_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/69.Syscalls - Reimplementing APC Injection_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/70.Anti-Analysis - Introduction_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/71.Anti-Debugging - Multiple Techniques_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/72.Anti-Debugging - Self-Deletion_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/73.Anti-Virtual Environments - Multiple Techniques_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/74.Anti-Virtual Environments - Multiple Delay Execution Techniques_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/75.Anti-Virtual Environments - API Hammering_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/76.Binary Entropy Reduction_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/77.Brute Force Decryption_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/78.MalDev Academy Tool - KeyGuard_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/80.IAT Camouflage_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/81.Bypassing AVs_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/82.Introduction To EDRs_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/83.NTDLL Unhooking - Introduction_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/84.NTDLL Unhooking - From Disk_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/85.NTDLL Unhooking - From KnownDlls Directory_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/86.NTDLL Unhooking - From a Suspended Process_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/87.NTDLL Unhooking - From a Web Server_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/88.Updating Hell's Gate_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/89.Indirect Syscalls - HellsHall_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/90.Block DLL Policy_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/91.Diving Into NtCreateUserProcess_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/Modules_files/app.41d05e38.css 30.1 kB
  • Maldev Modules/67.Syscalls - Reimplementing Classic Injection_files/syscalls-classic-114349632-de44115a-3e9f-450f-bb37-f0bff7776.png 30.0 kB
  • Maldev Modules/9.Dynamic-Link Library.htm 29.9 kB
  • Maldev Modules/85.NTDLL Unhooking - From KnownDlls Directory.htm 29.7 kB
  • Maldev Modules/47.Spoofing PPID.htm 29.6 kB
  • Maldev Modules/34.Process Enumeration - NtQuerySystemInformation.htm 29.5 kB
  • Maldev Modules/78.MalDev Academy Tool - KeyGuard.htm 29.1 kB
  • Maldev Modules/61.API Hooking - Custom Code.htm 29.0 kB
  • Maldev Modules/48.Process Argument Spoofing (1)_files/arg-spoof-209553208-efe6e1fb-2e03-4840-a1ff-821217ddf731.png 29.0 kB
  • Maldev Modules/66.Syscalls - Hell's Gate.htm 29.0 kB
  • Maldev Modules/35.Thread Hijacking - Local Thread Creation.htm 28.7 kB
  • Maldev Modules/57.IAT Hiding & Obfuscation - Compile Time API Hashing.htm 28.7 kB
  • Maldev Modules/11.Windows Processes.htm 28.4 kB
  • Maldev Modules/71.Anti-Debugging - Multiple Techniques_files/anti-debugging-215283166-37faff36-628c-43e4-aaf1-e41ad6310dd.png 28.3 kB
  • Maldev Modules/74.Anti-Virtual Environments - Multiple Delay Execution Techniques.htm 28.3 kB
  • Maldev Modules/67.Syscalls - Reimplementing Classic Injection_files/syscalls-classic-314352187-6786f4d7-1ae2-4e6b-94ce-8f8087d22.png 28.2 kB
  • Maldev Modules/82.Introduction To EDRs.htm 28.2 kB
  • Maldev Modules/36.Thread Hijacking - Remote Thread Creation.htm 28.1 kB
  • Maldev Modules/81.Bypassing AVs_files/av-bypass-116769871-25449179-cdfb-412b-899f-1744ac77246b.png 27.9 kB
  • Maldev Modules/29.Process Injection - Shellcode Injection_files/remote-shellcode-injection-1.png 27.8 kB
  • Maldev Modules/86.NTDLL Unhooking - From a Suspended Process.htm 27.5 kB
  • Maldev Modules/18.Payload Encryption - RC4.htm 27.5 kB
  • Maldev Modules/72.Anti-Debugging - Self-Deletion.htm 27.2 kB
  • Maldev Modules/67.Syscalls - Reimplementing Classic Injection_files/syscalls-classic-414353258-3fbf4ead-ce9c-4083-805a-ae5ced082.png 27.0 kB
  • Maldev Modules/31.Payload Staging - Windows Registry_files/registry-demo-1.png 26.8 kB
  • MalDev/68-SyscallsMappingInjection.zip 26.6 kB
  • Maldev Modules/68.SyscallsMappingInjection.zip 26.6 kB
  • Maldev Modules/90.Block DLL Policy.htm 26.6 kB
  • Maldev Modules/62.API Hooking - Using Windows APIs.htm 26.5 kB
  • Maldev Modules/28.Process Injection - DLL Injection_files/remote-dll-injection-7.png 26.4 kB
  • Maldev Modules/64.Syscalls - Userland Hooking.htm 25.9 kB
  • Maldev Modules/6.Windows Memory Management.htm 25.9 kB
  • Maldev Modules/75.Anti-Virtual Environments - API Hammering.htm 25.7 kB
  • Maldev Modules/86.NTDLL Unhooking - From a Suspended Process_files/ntdll-suspended-process-118639361-38c2053c-1ce0-4432-996e-53.png 25.7 kB
  • MalDev/67-SyscallsClassicalInjection.zip 25.5 kB
  • Maldev Modules/67.SyscallsClassicalInjection.zip 25.5 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/crt-11.png 25.3 kB
  • Maldev Modules/55.IAT Hiding & Obfuscation - API Hashing.htm 25.3 kB
  • Maldev Modules/37.Thread Hijacking - Local Thread Enumeration.htm 25.2 kB
  • Maldev Modules/51.String Hashing.htm 24.9 kB
  • Maldev Modules/42.Local Mapping Injection.htm 24.9 kB
  • Maldev Modules/33.Process Enumeration - EnumProcesses.htm 24.9 kB
  • Maldev Modules/76.Binary Entropy Reduction.htm 24.8 kB
  • Maldev Modules/34.Process Enumeration - NtQuerySystemInformation_files/nt-108508463-27e8a0b8-4d4e-4391-bf1d-8d75ad2567d3.png 24.8 kB
  • Maldev Modules/23.Payload Obfuscation - UUIDFuscation.htm 24.6 kB
  • Maldev Modules/29.Process Injection - Shellcode Injection.htm 24.5 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/crt-26.png 24.5 kB
  • Maldev Modules/84.NTDLL Unhooking - From Disk_files/ntdll-unhooking-disk-318424215-3ec0d749-437d-42cb-b138-c925a.png 24.4 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/crt-29.png 24.4 kB
  • Maldev Modules/39.APC Injection.htm 24.4 kB
  • Maldev Modules/32.Malware Binary Signing_files/maldev-properties.png 24.4 kB
  • Maldev Modules/60.API Hooking - Minhook Library.htm 24.4 kB
  • MalDev/69-SyscallsApcInjection.zip 24.3 kB
  • Maldev Modules/69.SyscallsApcInjection.zip 24.3 kB
  • Maldev Modules/43.Remote Mapping Injection.htm 24.3 kB
  • Maldev Modules/10.Detection Mechanisms.htm 24.2 kB
  • MalDev/Challenges/12-sideloading-challenge.zip 24.2 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/crt-30.png 23.8 kB
  • Maldev Modules/13.Payload Placement - .data & .rdata Sections.htm 23.6 kB
  • Maldev Modules/41.Callback Code Execution.htm 23.6 kB
  • Maldev Modules/63.Syscalls - Introduction.htm 23.6 kB
  • Maldev Modules/44.Local Function Stomping Injection.htm 23.5 kB
  • Maldev Modules/67.Syscalls - Reimplementing Classic Injection_files/syscalls-classic-618293274-8d259f06-efa2-4254-886c-ce14500fb.png 23.3 kB
  • Maldev Modules/50.Parsing PE Headers_files/pe-parser-109789281-55662de8-c252-427c-b4d0-8245e238ce10.png 23.2 kB
  • Maldev Modules/80.IAT Camouflage.htm 22.7 kB
  • Maldev Modules/15.Payload Placement - .rsrc Section.htm 22.3 kB
  • Maldev Modules/63.Syscalls - Introduction_files/syscalls-intro-313903469-08ed9596-55bd-4c09-b39b-dc1f8e169d4.png 22.1 kB
  • Maldev Modules/40.Early Bird APC Injection.htm 22.0 kB
  • Maldev Modules/2.Introduction To Malware Development.htm 21.9 kB
  • Maldev Modules/32.Malware Binary Signing_files/pfx-creation.png 21.8 kB
  • Maldev Modules/56.IAT Hiding & Obfuscation - Custom Pseudo Handles.htm 21.6 kB
  • Maldev Modules/30.Payload Staging - Web Server_files/python-http-server.png 21.6 kB
  • Maldev Modules/46.Payload Execution Control.htm 21.6 kB
  • Maldev Modules/45.Remote Function Stomping Injection.htm 21.5 kB
  • MalDev/Module 11 - HBP_RdpThief.zip 21.5 kB
  • MalDev/Module 28 - LocalPeExec.zip 21.4 kB
  • Maldev Modules/80.IAT Camouflage_files/iat-camo-0222202369-4ec0c257-3f73-4563-8611-6a367e668455.png 21.1 kB
  • MalDev/Module 10 - HardwareBPHookingLib.zip 21.1 kB
  • MalDev/Module 20 - AmsiBypassViaHBP.zip 21.1 kB
  • Maldev Modules/22.Payload Obfuscation - MACFucscation.htm 21.0 kB
  • MalDev/Module 16 - EtwBypassViaHBP.zip 21.0 kB
  • Maldev Modules/4.Coding Basics.htm 20.8 kB
  • Maldev Modules/77.Brute Force Decryption.htm 20.7 kB
  • Maldev Modules/31.Payload Staging - Windows Registry_files/registry-new-string-value.png 20.6 kB
  • Maldev Modules/32.Malware Binary Signing.htm 20.2 kB
  • Maldev Modules/66.Syscalls - Hell's Gate_files/hellsgate-214097117-16ca9e20-17b3-427c-b0b0-b0e7ec78191c.png 20.2 kB
  • Maldev Modules/5.Windows Architecture.htm 20.0 kB
  • Maldev Modules/66.Syscalls - Hell's Gate_files/hellsgate-414099901-48434135-7e83-4cd5-aea6-94d1ef75f652.png 20.0 kB
  • Maldev Modules/12.Undocumented Structures.htm 20.0 kB
  • Maldev Modules/49.Process Argument Spoofing (2)_files/spoofing-209614417-27d1960a-a101-4d6d-8247-e49c9a387556.png 20.0 kB
  • Maldev Modules/63.Syscalls - Introduction_files/syscalls-intro-413903414-69957a37-e317-4913-aa29-d9720b6f9eb.png 19.9 kB
  • Maldev Modules/56.IAT Hiding & Obfuscation - Custom Pseudo Handles_files/pseudo-handle-224505515-1079792a-5685-4051-a364-6a7424d95646.png 19.9 kB
  • Maldev Modules/38.Thread Hijacking - Remote Thread Enumeration.htm 19.9 kB
  • Maldev Modules/3.Required Tools.htm 19.7 kB
  • Maldev Modules/57.IAT Hiding & Obfuscation - Compile Time API Hashing_files/compile-time-hashing-810127330-fd9124e2-361c-463b-bc4e-7e5ea.png 19.6 kB
  • Maldev Modules/26.Local Payload Execution - DLL.htm 19.4 kB
  • Maldev Modules/57.IAT Hiding & Obfuscation - Compile Time API Hashing_files/compile-time-hashing-310127229-b041b0ac-e48e-4c12-88b5-cc39c.png 19.3 kB
  • Maldev Modules/58.API Hooking - Introduction.htm 19.2 kB
  • MalDev/21-IpFuscation.zip 19.2 kB
  • Maldev Modules/21.IpFuscation.zip 19.2 kB
  • Maldev Modules/14.Payload Placement - .text Section.htm 19.1 kB
  • Maldev Modules/1.Welcome Module_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/2.Introduction To Malware Development_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/3.Required Tools_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/4.Coding Basics_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/5.Windows Architecture_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/6.Windows Memory Management_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/7.Introduction To The Windows API_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/8.Portable Executable Format_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/9.Dynamic-Link Library_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/10.Detection Mechanisms_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/11.Windows Processes_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/12.Undocumented Structures_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/13.Payload Placement - .data & .rdata Sections_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/14.Payload Placement - .text Section_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/15.Payload Placement - .rsrc Section_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/16.Introduction To Payload Encryption_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/17.Payload Encryption - XOR_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/18.Payload Encryption - RC4_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/19.Payload Encryption - AES Encryption_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/20.Evading Microsoft Defender Static Analysis_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/21.Payload Obfuscation - IPv4_IPv6Fuscation_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/22.Payload Obfuscation - MACFucscation_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/23.Payload Obfuscation - UUIDFuscation_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/24.Maldev Academy Tool - HellShell_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/25.Maldev Academy Tool - MiniShell_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/26.Local Payload Execution - DLL_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/27.Local Payload Execution - Shellcode_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/28.Process Injection - DLL Injection_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/29.Process Injection - Shellcode Injection_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/30.Payload Staging - Web Server_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/31.Payload Staging - Windows Registry_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/32.Malware Binary Signing_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/33.Process Enumeration - EnumProcesses_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/34.Process Enumeration - NtQuerySystemInformation_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/35.Thread Hijacking - Local Thread Creation_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/36.Thread Hijacking - Remote Thread Creation_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/37.Thread Hijacking - Local Thread Enumeration_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/38.Thread Hijacking - Remote Thread Enumeration_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/39.APC Injection_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/40.Early Bird APC Injection_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/41.Callback Code Execution_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/42.Local Mapping Injection_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/43.Remote Mapping Injection_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/44.Local Function Stomping Injection_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/45.Remote Function Stomping Injection_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/46.Payload Execution Control_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/47.Spoofing PPID_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/48.Process Argument Spoofing (1)_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/49.Process Argument Spoofing (2)_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/50.Parsing PE Headers_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/51.String Hashing_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/52.IAT Hiding & Obfuscation - Introduction_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/53.IAT Hiding & Obfuscation - Custom GetProcAddress_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/54.IAT Hiding & Obfuscation - Custom GetModuleHandle_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/55.IAT Hiding & Obfuscation - API Hashing_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/56.IAT Hiding & Obfuscation - Custom Pseudo Handles_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/57.IAT Hiding & Obfuscation - Compile Time API Hashing_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/58.API Hooking - Introduction_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/59.API Hooking - Detours Library_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/60.API Hooking - Minhook Library_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/61.API Hooking - Custom Code_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/62.API Hooking - Using Windows APIs_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/63.Syscalls - Introduction_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/64.Syscalls - Userland Hooking_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/65.Syscalls - SysWhispers_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/66.Syscalls - Hell's Gate_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/67.Syscalls - Reimplementing Classic Injection_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/68.Syscalls - Reimplementing Mapping Injection_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/69.Syscalls - Reimplementing APC Injection_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/70.Anti-Analysis - Introduction_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/71.Anti-Debugging - Multiple Techniques_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/72.Anti-Debugging - Self-Deletion_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/73.Anti-Virtual Environments - Multiple Techniques_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/74.Anti-Virtual Environments - Multiple Delay Execution Techniques_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/75.Anti-Virtual Environments - API Hammering_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/76.Binary Entropy Reduction_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/77.Brute Force Decryption_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/78.MalDev Academy Tool - KeyGuard_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/80.IAT Camouflage_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/81.Bypassing AVs_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/82.Introduction To EDRs_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/83.NTDLL Unhooking - Introduction_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/84.NTDLL Unhooking - From Disk_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/85.NTDLL Unhooking - From KnownDlls Directory_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/86.NTDLL Unhooking - From a Suspended Process_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/87.NTDLL Unhooking - From a Web Server_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/88.Updating Hell's Gate_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/89.Indirect Syscalls - HellsHall_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/90.Block DLL Policy_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/91.Diving Into NtCreateUserProcess_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/Modules_files/logo-bug-2.png 19.0 kB
  • Maldev Modules/83.NTDLL Unhooking - Introduction.htm 19.0 kB
  • Maldev Modules/49.Process Argument Spoofing (2).htm 18.9 kB
  • Maldev Modules/17.Payload Encryption - XOR.htm 18.8 kB
  • Maldev Modules/88.Updating Hell's Gate_files/hellsgate-update-719008069-88be2bdc-b34e-4a9b-a338-91df90cd5.png 18.8 kB
  • Maldev Modules/19.Aes.zip 18.7 kB
  • Maldev Modules/64.Syscalls - Userland Hooking_files/syscalls-userland-hooks-516898739-a3e3c7e6-68d7-4e8f-a424-15.png 18.7 kB
  • MalDev/Module 29 - ReflectiveDllLdr.zip 18.6 kB
  • Maldev Modules/70.Anti-Analysis - Introduction.htm 18.6 kB
  • Maldev Modules/30.Payload Staging - Web Server_files/staging-demo-2.png 18.5 kB
  • MalDev/41-Callback-Code-Execution.zip 18.5 kB
  • Maldev Modules/41.Callback-Code-Execution.zip 18.5 kB
  • Maldev Modules/30.Payload Staging - Web Server_files/staging-github.png 18.5 kB
  • Maldev Modules/90.Block DLL Policy_files/block-dll-119432594-98c5ac96-6827-4bd5-b1bd-8101251cf1ef.png 18.4 kB
  • Maldev Modules/54.IAT Hiding & Obfuscation - Custom GetModuleHandle_files/custom-getmodulehandle-310037888-cfab12a2-d9ff-4174-9c6e-2cc.png 18.4 kB
  • MalDev/19-Aes.zip 18.3 kB
  • Maldev Modules/57.IAT Hiding & Obfuscation - Compile Time API Hashing_files/compile-time-hashing-710127301-b4ad2456-74a9-4030-893a-d330d.png 18.1 kB
  • Maldev Modules/24.Maldev Academy Tool - HellShell.htm 17.9 kB
  • Maldev Modules/1.Welcome Module.htm 17.8 kB
  • Maldev Modules/20.WinDef.zip 17.8 kB
  • Maldev Modules/54.IAT Hiding & Obfuscation - Custom GetModuleHandle_files/custom-getmodule-new-221769848-48118974-d4b7-4a63-b2ce-8802b.png 17.7 kB
  • MalDev/88-HellsGateUpdated.zip 17.7 kB
  • Maldev Modules/88.HellsGateUpdated.zip 17.7 kB
  • Maldev Modules/20.Evading Microsoft Defender Static Analysis.htm 17.5 kB
  • Maldev Modules/16.Introduction To Payload Encryption.htm 17.5 kB
  • Maldev Modules/25.Maldev Academy Tool - MiniShell.htm 17.4 kB
  • Maldev Modules/81.Bypassing AVs_files/av-bypass-12.png 17.4 kB
  • MalDev/20-WinDef.zip 17.3 kB
  • Maldev Modules/56.IAT Hiding & Obfuscation - Custom Pseudo Handles_files/pseudo-handle-324505523-586c63fa-8f52-4564-b01f-a52c3a34524f.png 17.3 kB
  • MalDev/89-HellsHall.zip 17.2 kB
  • Maldev Modules/89.HellsHall.zip 17.2 kB
  • Maldev Modules/52.IAT Hiding & Obfuscation - Introduction.htm 17.2 kB
  • Maldev Modules/87.NTDLL Unhooking - From a Web Server_files/ntdll-unhooking-server-218741853-fb112eb2-6058-4c09-bf31-636.png 17.1 kB
  • Maldev Modules/56.IAT Hiding & Obfuscation - Custom Pseudo Handles_files/pseudo-handle-424505527-99a803e2-eaff-49a3-9ac2-470bc1fb8c69.png 16.8 kB
  • Maldev Modules/28.Process Injection - DLL Injection_files/remote-dll-injection-2.png 16.5 kB
  • Maldev Modules/10.Detection Mechanisms_files/api-hooking.png 16.0 kB
  • Maldev Modules/35.Thread Hijacking - Local Thread Creation_files/threadhijack-308833564-0000d447-c970-40d8-8be3-8da70b63f30f.png 15.9 kB
  • MalDev/Module 37 - ModuleOverloading.zip 15.6 kB
  • Maldev Modules/87.NTDLL Unhooking - From a Web Server_files/ntdll-unhooking-server-618750624-b5511b03-9f66-42c6-ae0c-826.png 15.2 kB
  • MalDev/78-KeyGuard.zip 15.1 kB
  • Maldev Modules/78.KeyGuard.zip 15.1 kB
  • Maldev Modules/54.IAT Hiding & Obfuscation - Custom GetModuleHandle_files/custom-getmodulehandle-510041809-92e59481-49dc-4f6c-bc6d-741.png 15.0 kB
  • MalDev/24-HellShell.zip 14.7 kB
  • Maldev Modules/24.HellShell.zip 14.7 kB
  • Maldev Modules/75.Anti-Virtual Environments - API Hammering_files/api-hammering-115849002-8f48543a-45d1-46bf-b740-5362f2ae7dc2.png 14.7 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/crt-516064966-265ea0cb-f8e7-4b06-920f-97a87a634e84.png 14.6 kB
  • Maldev Modules/58.API Hooking - Introduction_files/hooking-intro-215247209-ce8c97aa-3d6f-488e-893c-aea9230f6afa.png 14.6 kB
  • Maldev Modules/55.IAT Hiding & Obfuscation - API Hashing_files/api-hashing-210060409-a932736a-ec54-4946-939f-750f44affa19.png 14.2 kB
  • Maldev Modules/77.Brute Force Decryption_files/bruteforce-decryption-115958551-66287afd-396c-4beb-8255-0c33.png 14.2 kB
  • Maldev Modules/30.Payload Staging - Web Server_files/python-http-server-2.png 14.1 kB
  • MalDev/Module 13 - QueryEtwSessions-DotNetEtwConsumer.zip 14.0 kB
  • MalDev/Module 36 - ModuleStomping.zip 13.9 kB
  • Maldev Modules/72.Anti-Debugging - Self-Deletion_files/self-deletion-315324185-4157dabc-fe41-4a40-b1ce-caf4c3a19c1f.png 13.9 kB
  • MalDev/51-StringHashing.zip 13.7 kB
  • Maldev Modules/51.StringHashing.zip 13.7 kB
  • Maldev Modules/66.Syscalls - Hell's Gate_files/hellsgate-114089998-966e34f8-c59b-4b3a-8c84-8d6014001a19.png 13.6 kB
  • MalDev/Module 1 - FileAttributesDemo.zip 13.5 kB
  • Maldev Modules/65.Syscalls - SysWhispers_files/syswhipsers2-syscall-search.png 13.3 kB
  • Maldev Modules/8.Portable Executable Format_files/pe-structure.png 13.0 kB
  • Maldev Modules/50.Parsing PE Headers_files/pe-structure.png 13.0 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/crt-17.png 12.9 kB
  • MalDev/46-PayloadExecutionControl.zip 12.7 kB
  • Maldev Modules/46.PayloadExecutionControl.zip 12.7 kB
  • MalDev/Module 7 - Bring-Your-Own-Protocol-Handler.zip 12.4 kB
  • Maldev Modules/63.Syscalls - Introduction_files/syscalls-intro-113904478-7d2bf6e7-ee44-4a3e-8100-28e26d0fe0d.png 12.4 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/crt-616065036-37ed8313-ecd4-4ac7-b902-fb407e0ae7e4.png 12.3 kB
  • Maldev Modules/88.Updating Hell's Gate_files/hellsgate-update-118970171-6a388cdf-2e50-4441-8013-d4fb0afcd.png 12.3 kB
  • Maldev Modules/87.NTDLL Unhooking - From a Web Server_files/ntdll-unhooking-server-318747866-fb9bb405-fce4-46b1-9797-a07.png 12.2 kB
  • Maldev Modules/63.Syscalls - Introduction_files/syscalls-intro-213904491-110e794d-616f-4239-8a0a-96c2d2be77d.png 12.2 kB
  • Maldev Modules/58.API Hooking - Introduction_files/hooking-intro-115247938-09b2e089-3a64-443f-86b1-e147acfe8cdc.png 11.9 kB
  • MalDev/Module 30 - PeFluctuation.zip 11.9 kB
  • Maldev Modules/37.Thread Hijacking - Local Thread Enumeration_files/tenum-0209185998-74b97dca-e541-401d-b700-b45852e7564a.png 11.5 kB
  • Maldev Modules/57.IAT Hiding & Obfuscation - Compile Time API Hashing_files/compile-time-hashing-510127264-113b5309-cdbb-4d86-9c74-7e7a0.png 11.4 kB
  • MalDev/18-Rc4.zip 11.4 kB
  • Maldev Modules/18.Rc4.zip 11.4 kB
  • MalDev/45-RemoteFunctionStomping.zip 11.2 kB
  • Maldev Modules/45.RemoteFunctionStomping.zip 11.2 kB
  • MalDev/Module 2 - NtQueryThreads.zip 11.2 kB
  • MalDev/25-MiniShell.zip 11.0 kB
  • Maldev Modules/25.MiniShell.zip 11.0 kB
  • Maldev Modules/53.IAT Hiding & Obfuscation - Custom GetProcAddress_files/ordinals-getproc.png 10.8 kB
  • MalDev/34-NtQuerySystemInformation.zip 10.8 kB
  • Maldev Modules/34.NtQuerySystemInformation.zip 10.8 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/crt-20.png 10.3 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/crt-22.png 10.2 kB
  • MalDev/23-UUIDFuscation.zip 10.2 kB
  • Maldev Modules/23.UUIDFuscation.zip 10.2 kB
  • MalDev/71-AntiDebugTechs.zip 10.0 kB
  • Maldev Modules/71.AntiDebugTechs.zip 10.0 kB
  • MalDev/22-MacFuscation.zip 9.9 kB
  • Maldev Modules/22.MacFuscation.zip 9.9 kB
  • MalDev/91-NtCreateUserProcess.zip 9.7 kB
  • Maldev Modules/91.NtCreateUserProcess.zip 9.7 kB
  • Maldev Modules/71.Anti-Debugging - Multiple Techniques_files/anti-debugging-415305654-6593a2cd-5fc1-4f8c-b4dc-9f4eb55c47b.png 9.5 kB
  • Maldev Modules/35.Thread Hijacking - Local Thread Creation_files/start-address-param.png 9.4 kB
  • MalDev/73-AntiVirtualEnvTechs.zip 9.2 kB
  • Maldev Modules/73.AntiVirtualEnvTechs.zip 9.2 kB
  • MalDev/44-LocalFunctionStomping.zip 9.2 kB
  • Maldev Modules/44.LocalFunctionStomping.zip 9.2 kB
  • Maldev Modules/9.Dynamic-Link Library_files/create-dll-3.png 9.2 kB
  • MalDev/Module 3 - WinAPIsRep.zip 9.0 kB
  • MalDev/Challenges/19-InsertPeSection.zip 8.9 kB
  • Maldev Modules/47.Spoofing PPID_files/ppid-spoofing-309529480-978dfe1a-ba61-4881-a33d-9614bd7ee3bb.png 8.7 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/crt-24.png 8.5 kB
  • MalDev/Module 9 - HardwareBPsHook.zip 8.4 kB
  • Maldev Modules/28.Remote-DLL-Injection.zip 8.2 kB
  • MalDev/28-Remote-DLL-Injection.zip 8.2 kB
  • MalDev/50-PeParser.zip 8.2 kB
  • MalDev/Module 34 - TLSCallbacksForAD.zip 8.2 kB
  • Maldev Modules/50.PeParser.zip 8.2 kB
  • Maldev Modules/49.Process Argument Spoofing (2)_files/spoofing-409618296-d64a33d8-0d25-400f-9a2d-47d9483ec70f.png 8.1 kB
  • Maldev Modules/56.IAT Hiding & Obfuscation - Custom Pseudo Handles_files/pseudo-handle-524524030-94c0a3e8-71c0-4df6-b4b5-e95b2e76edca.png 8.1 kB
  • MalDev/54-GetModuleHandleReplacement.zip 7.6 kB
  • Maldev Modules/54.GetModuleHandleReplacement.zip 7.6 kB
  • Maldev Modules/54.IAT Hiding & Obfuscation - Custom GetModuleHandle_files/custom-getmodulehandle-110036660-4488defa-47aa-4993-902d-0c9.png 7.6 kB
  • Maldev Modules/54.IAT Hiding & Obfuscation - Custom GetModuleHandle_files/custom-getmodulehandle-410036660-4488defa-47aa-4993-902d-0c9.png 7.6 kB
  • MalDev/Module 38 - ProcessHollowing.zip 7.2 kB
  • MalDev/Module 35 - ThreadlessInjection.zip 7.1 kB
  • MalDev/29-Proc-Inject-Shellcode-Exec.zip 6.8 kB
  • Maldev Modules/29.Proc-Inject-Shellcode-Exec.zip 6.8 kB
  • MalDev/26-Local-Dll-Injection.zip 6.6 kB
  • Maldev Modules/26.Local-Dll-Injection.zip 6.6 kB
  • Maldev Modules/88.Updating Hell's Gate_files/hellsgate-update-15.png 6.3 kB
  • MalDev/36-RemoteThreadHijacking.zip 6.3 kB
  • Maldev Modules/36.RemoteThreadHijacking.zip 6.3 kB
  • MalDev/43-RemoteMappingInjection.zip 6.2 kB
  • Maldev Modules/43.RemoteMappingInjection.zip 6.2 kB
  • MalDev/87-ServerUnhooking.zip 6.2 kB
  • Maldev Modules/87.ServerUnhooking.zip 6.2 kB
  • MalDev/Challenges/13-SharedUserDelay.zip 6.2 kB
  • MalDev/38-RemoteThreadEnumHijacking.zip 6.2 kB
  • Maldev Modules/38.RemoteThreadEnumHijacking.zip 6.2 kB
  • MalDev/Module 21 - DRM.zip 6.1 kB
  • MalDev/49-ArgSpoofing-2.zip 6.0 kB
  • Maldev Modules/49.ArgSpoofing-2.zip 6.0 kB
  • Maldev Modules/31.Registry.zip 5.9 kB
  • MalDev/84-DiskUnhooking.zip 5.9 kB
  • Maldev Modules/84.DiskUnhooking.zip 5.9 kB
  • MalDev/86-SuspendedProcessUnhooking.zip 5.8 kB
  • Maldev Modules/86.SuspendedProcessUnhooking.zip 5.8 kB
  • Maldev Modules/72.Anti-Debugging - Self-Deletion_files/self-deletion-522060452-81349155-d24a-4b8a-b84c-fa231dfcbf3b.png 5.8 kB
  • MalDev/27-Local-Shellcode-Exec.zip 5.8 kB
  • Maldev Modules/27.Local-Shellcode-Exec.zip 5.8 kB
  • MalDev/35-LocalThreadHijacking.zip 5.7 kB
  • Maldev Modules/35.LocalThreadHijacking.zip 5.7 kB
  • Maldev Modules/72.Anti-Debugging - Self-Deletion_files/self-deletion-6222060992-0b642d05-e871-4ed1-b2f0-a634796ea28.png 5.7 kB
  • MalDev/40-EarlyBird.zip 5.7 kB
  • Maldev Modules/40.EarlyBird.zip 5.7 kB
  • Maldev Modules/88.Updating Hell's Gate_files/hellsgate-update-518995420-b4dc7adb-c5f2-4a38-99a1-cfb1e845f.png 5.7 kB
  • MalDev/Module 19 - AmsiPatching.zip 5.6 kB
  • MalDev/48-ArgSpoofing-1.zip 5.6 kB
  • Maldev Modules/48.ArgSpoofing-1.zip 5.6 kB
  • MalDev/31-Registry.zip 5.6 kB
  • MalDev/Module 17 - EtwSessionHijacking.zip 5.6 kB
  • MalDev/37-LocalThreadEnumHijacking.zip 5.5 kB
  • Maldev Modules/37.LocalThreadEnumHijacking.zip 5.5 kB
  • MalDev/55-ApiHashing.zip 5.5 kB
  • Maldev Modules/55.ApiHashing.zip 5.5 kB
  • MalDev/15-ResourcePayloadPlacement.zip 5.4 kB
  • Maldev Modules/15.ResourcePayloadPlacement.zip 5.4 kB
  • MalDev/57-CompileTimeApiHashing.zip 5.4 kB
  • Maldev Modules/57.CompileTimeApiHashing.zip 5.4 kB
  • MalDev/Challenges/17-HashObfGetProcAddress.zip 5.3 kB
  • MalDev/85-KnownDllUnhooking.zip 5.3 kB
  • Maldev Modules/85.KnownDllUnhooking.zip 5.3 kB
  • Maldev Modules/39.ApcInjection.zip 5.3 kB
  • MalDev/Module 5 - IntroToAssembly.zip 5.3 kB
  • MalDev/61-CustomTrampoline.zip 5.2 kB
  • Maldev Modules/61.CustomTrampoline.zip 5.2 kB
  • MalDev/47-PPidSpoofing.zip 5.2 kB
  • Maldev Modules/47.PPidSpoofing.zip 5.2 kB
  • MalDev/42-LocalMappingInjection.zip 5.1 kB
  • Maldev Modules/42.LocalMappingInjection.zip 5.1 kB
  • MalDev/Challenges/07-KillDate.zip 5.1 kB
  • MalDev/39-ApcInjection.zip 5.0 kB
  • MalDev/Challenges/11-StageEarlyBird.zip 4.9 kB
  • MalDev/75-ApiHammering.zip 4.9 kB
  • Maldev Modules/75.ApiHammering.zip 4.9 kB
  • MalDev/Challenges/18-FibersTls.zip 4.9 kB
  • MalDev/74-DelayExecution.zip 4.8 kB
  • Maldev Modules/74.DelayExecution.zip 4.8 kB
  • MalDev/30-WebStaging.zip 4.8 kB
  • Maldev Modules/30.WebStaging.zip 4.8 kB
  • MalDev/90-BlockDllPolicy.zip 4.8 kB
  • Maldev Modules/90.BlockDllPolicy.zip 4.8 kB
  • Maldev Modules/1.Welcome Module_files/moduleviewer.js 4.7 kB
  • Maldev Modules/2.Introduction To Malware Development_files/moduleviewer.js 4.7 kB
  • Maldev Modules/3.Required Tools_files/moduleviewer.js 4.7 kB
  • Maldev Modules/4.Coding Basics_files/moduleviewer.js 4.7 kB
  • Maldev Modules/5.Windows Architecture_files/moduleviewer.js 4.7 kB
  • Maldev Modules/6.Windows Memory Management_files/moduleviewer.js 4.7 kB
  • Maldev Modules/7.Introduction To The Windows API_files/moduleviewer.js 4.7 kB
  • Maldev Modules/8.Portable Executable Format_files/moduleviewer.js 4.7 kB
  • Maldev Modules/9.Dynamic-Link Library_files/moduleviewer.js 4.7 kB
  • Maldev Modules/10.Detection Mechanisms_files/moduleviewer.js 4.7 kB
  • Maldev Modules/11.Windows Processes_files/moduleviewer.js 4.7 kB
  • Maldev Modules/12.Undocumented Structures_files/moduleviewer.js 4.7 kB
  • Maldev Modules/13.Payload Placement - .data & .rdata Sections_files/moduleviewer.js 4.7 kB
  • Maldev Modules/14.Payload Placement - .text Section_files/moduleviewer.js 4.7 kB
  • Maldev Modules/15.Payload Placement - .rsrc Section_files/moduleviewer.js 4.7 kB
  • Maldev Modules/16.Introduction To Payload Encryption_files/moduleviewer.js 4.7 kB
  • Maldev Modules/17.Payload Encryption - XOR_files/moduleviewer.js 4.7 kB
  • Maldev Modules/18.Payload Encryption - RC4_files/moduleviewer.js 4.7 kB
  • Maldev Modules/19.Payload Encryption - AES Encryption_files/moduleviewer.js 4.7 kB
  • Maldev Modules/20.Evading Microsoft Defender Static Analysis_files/moduleviewer.js 4.7 kB
  • Maldev Modules/21.Payload Obfuscation - IPv4_IPv6Fuscation_files/moduleviewer.js 4.7 kB
  • Maldev Modules/22.Payload Obfuscation - MACFucscation_files/moduleviewer.js 4.7 kB
  • Maldev Modules/23.Payload Obfuscation - UUIDFuscation_files/moduleviewer.js 4.7 kB
  • Maldev Modules/24.Maldev Academy Tool - HellShell_files/moduleviewer.js 4.7 kB
  • Maldev Modules/25.Maldev Academy Tool - MiniShell_files/moduleviewer.js 4.7 kB
  • Maldev Modules/26.Local Payload Execution - DLL_files/moduleviewer.js 4.7 kB
  • Maldev Modules/27.Local Payload Execution - Shellcode_files/moduleviewer.js 4.7 kB
  • Maldev Modules/28.Process Injection - DLL Injection_files/moduleviewer.js 4.7 kB
  • Maldev Modules/29.Process Injection - Shellcode Injection_files/moduleviewer.js 4.7 kB
  • Maldev Modules/30.Payload Staging - Web Server_files/moduleviewer.js 4.7 kB
  • Maldev Modules/31.Payload Staging - Windows Registry_files/moduleviewer.js 4.7 kB
  • Maldev Modules/32.Malware Binary Signing_files/moduleviewer.js 4.7 kB
  • Maldev Modules/33.Process Enumeration - EnumProcesses_files/moduleviewer.js 4.7 kB
  • Maldev Modules/34.Process Enumeration - NtQuerySystemInformation_files/moduleviewer.js 4.7 kB
  • Maldev Modules/35.Thread Hijacking - Local Thread Creation_files/moduleviewer.js 4.7 kB
  • Maldev Modules/36.Thread Hijacking - Remote Thread Creation_files/moduleviewer.js 4.7 kB
  • Maldev Modules/37.Thread Hijacking - Local Thread Enumeration_files/moduleviewer.js 4.7 kB
  • Maldev Modules/38.Thread Hijacking - Remote Thread Enumeration_files/moduleviewer.js 4.7 kB
  • Maldev Modules/39.APC Injection_files/moduleviewer.js 4.7 kB
  • Maldev Modules/40.Early Bird APC Injection_files/moduleviewer.js 4.7 kB
  • Maldev Modules/41.Callback Code Execution_files/moduleviewer.js 4.7 kB
  • Maldev Modules/42.Local Mapping Injection_files/moduleviewer.js 4.7 kB
  • Maldev Modules/43.Remote Mapping Injection_files/moduleviewer.js 4.7 kB
  • Maldev Modules/44.Local Function Stomping Injection_files/moduleviewer.js 4.7 kB
  • Maldev Modules/45.Remote Function Stomping Injection_files/moduleviewer.js 4.7 kB
  • Maldev Modules/46.Payload Execution Control_files/moduleviewer.js 4.7 kB
  • Maldev Modules/47.Spoofing PPID_files/moduleviewer.js 4.7 kB
  • Maldev Modules/48.Process Argument Spoofing (1)_files/moduleviewer.js 4.7 kB
  • Maldev Modules/49.Process Argument Spoofing (2)_files/moduleviewer.js 4.7 kB
  • Maldev Modules/50.Parsing PE Headers_files/moduleviewer.js 4.7 kB
  • Maldev Modules/51.String Hashing_files/moduleviewer.js 4.7 kB
  • Maldev Modules/52.IAT Hiding & Obfuscation - Introduction_files/moduleviewer.js 4.7 kB
  • Maldev Modules/53.IAT Hiding & Obfuscation - Custom GetProcAddress_files/moduleviewer.js 4.7 kB
  • Maldev Modules/54.IAT Hiding & Obfuscation - Custom GetModuleHandle_files/moduleviewer.js 4.7 kB
  • Maldev Modules/55.IAT Hiding & Obfuscation - API Hashing_files/moduleviewer.js 4.7 kB
  • Maldev Modules/56.IAT Hiding & Obfuscation - Custom Pseudo Handles_files/moduleviewer.js 4.7 kB
  • Maldev Modules/57.IAT Hiding & Obfuscation - Compile Time API Hashing_files/moduleviewer.js 4.7 kB
  • Maldev Modules/58.API Hooking - Introduction_files/moduleviewer.js 4.7 kB
  • Maldev Modules/59.API Hooking - Detours Library_files/moduleviewer.js 4.7 kB
  • Maldev Modules/60.API Hooking - Minhook Library_files/moduleviewer.js 4.7 kB
  • Maldev Modules/61.API Hooking - Custom Code_files/moduleviewer.js 4.7 kB
  • Maldev Modules/62.API Hooking - Using Windows APIs_files/moduleviewer.js 4.7 kB
  • Maldev Modules/63.Syscalls - Introduction_files/moduleviewer.js 4.7 kB
  • Maldev Modules/64.Syscalls - Userland Hooking_files/moduleviewer.js 4.7 kB
  • Maldev Modules/65.Syscalls - SysWhispers_files/moduleviewer.js 4.7 kB
  • Maldev Modules/66.Syscalls - Hell's Gate_files/moduleviewer.js 4.7 kB
  • Maldev Modules/67.Syscalls - Reimplementing Classic Injection_files/moduleviewer.js 4.7 kB
  • Maldev Modules/68.Syscalls - Reimplementing Mapping Injection_files/moduleviewer.js 4.7 kB
  • Maldev Modules/69.Syscalls - Reimplementing APC Injection_files/moduleviewer.js 4.7 kB
  • Maldev Modules/70.Anti-Analysis - Introduction_files/moduleviewer.js 4.7 kB
  • Maldev Modules/71.Anti-Debugging - Multiple Techniques_files/moduleviewer.js 4.7 kB
  • Maldev Modules/72.Anti-Debugging - Self-Deletion_files/moduleviewer.js 4.7 kB
  • Maldev Modules/73.Anti-Virtual Environments - Multiple Techniques_files/moduleviewer.js 4.7 kB
  • Maldev Modules/74.Anti-Virtual Environments - Multiple Delay Execution Techniques_files/moduleviewer.js 4.7 kB
  • Maldev Modules/75.Anti-Virtual Environments - API Hammering_files/moduleviewer.js 4.7 kB
  • Maldev Modules/76.Binary Entropy Reduction_files/moduleviewer.js 4.7 kB
  • Maldev Modules/77.Brute Force Decryption_files/moduleviewer.js 4.7 kB
  • Maldev Modules/78.MalDev Academy Tool - KeyGuard_files/moduleviewer.js 4.7 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/moduleviewer.js 4.7 kB
  • Maldev Modules/80.IAT Camouflage_files/moduleviewer.js 4.7 kB
  • Maldev Modules/81.Bypassing AVs_files/moduleviewer.js 4.7 kB
  • Maldev Modules/82.Introduction To EDRs_files/moduleviewer.js 4.7 kB
  • Maldev Modules/83.NTDLL Unhooking - Introduction_files/moduleviewer.js 4.7 kB
  • Maldev Modules/84.NTDLL Unhooking - From Disk_files/moduleviewer.js 4.7 kB
  • Maldev Modules/85.NTDLL Unhooking - From KnownDlls Directory_files/moduleviewer.js 4.7 kB
  • Maldev Modules/86.NTDLL Unhooking - From a Suspended Process_files/moduleviewer.js 4.7 kB
  • Maldev Modules/87.NTDLL Unhooking - From a Web Server_files/moduleviewer.js 4.7 kB
  • Maldev Modules/88.Updating Hell's Gate_files/moduleviewer.js 4.7 kB
  • Maldev Modules/89.Indirect Syscalls - HellsHall_files/moduleviewer.js 4.7 kB
  • Maldev Modules/90.Block DLL Policy_files/moduleviewer.js 4.7 kB
  • Maldev Modules/91.Diving Into NtCreateUserProcess_files/moduleviewer.js 4.7 kB
  • MalDev/Module 15 - BetterEtwPatching.zip 4.7 kB
  • MalDev/33-EnumProcesses.zip 4.7 kB
  • Maldev Modules/33.EnumProcesses.zip 4.7 kB
  • Maldev Modules/77.BruteForce.zip 4.7 kB
  • Maldev Modules/72.SelfDeletion.zip 4.6 kB
  • MalDev/53-GetProcAddressReplacement.zip 4.5 kB
  • Maldev Modules/53.GetProcAddressReplacement.zip 4.5 kB
  • MalDev/62-WinApiHooking.zip 4.5 kB
  • Maldev Modules/62.WinApiHooking.zip 4.5 kB
  • MalDev/80-IatCamouflage.zip 4.4 kB
  • Maldev Modules/80.IatCamouflage.zip 4.4 kB
  • MalDev/Challenges/14-CompileTimeStringEnc.zip 4.4 kB
  • MalDev/Challenges/15-XorApiHashing.zip 4.4 kB
  • MalDev/77-BruteForce.zip 4.4 kB
  • MalDev/72-SelfDeletion.zip 4.3 kB
  • MalDev/Module 33 - PayloadExecViaFibers.zip 4.2 kB
  • MalDev/Module 14 - EtwPatching.zip 4.2 kB
  • MalDev/Challenges/20-SystemFunction040.zip 4.0 kB
  • MalDev/Challenges/21-ApiLessKeyGen.zip 4.0 kB
  • MalDev/13-DataPayloadPlacement.zip 3.9 kB
  • Maldev Modules/13.DataPayloadPlacement.zip 3.9 kB
  • MalDev/14-TextPayloadPlacement.zip 3.9 kB
  • Maldev Modules/14.TextPayloadPlacement.zip 3.9 kB
  • Maldev Modules/17.Xor.zip 3.8 kB
  • MalDev/17-Xor.zip 3.5 kB
  • MalDev/Challenges/16-Domain-Join.zip 3.4 kB
  • Maldev Modules/66.Syscalls - Hell's Gate_files/hellsgate-314099314-0029aee9-f8c2-4436-a740-4c2964a952be.png 3.3 kB
  • MalDev/Challenges/02-forwarded-functions.zip 2.8 kB
  • Maldev Modules/1.Welcome Module_files/css2.css 2.4 kB
  • Maldev Modules/2.Introduction To Malware Development_files/css2.css 2.4 kB
  • Maldev Modules/3.Required Tools_files/css2.css 2.4 kB
  • Maldev Modules/4.Coding Basics_files/css2.css 2.4 kB
  • Maldev Modules/5.Windows Architecture_files/css2.css 2.4 kB
  • Maldev Modules/6.Windows Memory Management_files/css2.css 2.4 kB
  • Maldev Modules/7.Introduction To The Windows API_files/css2.css 2.4 kB
  • Maldev Modules/8.Portable Executable Format_files/css2.css 2.4 kB
  • Maldev Modules/9.Dynamic-Link Library_files/css2.css 2.4 kB
  • Maldev Modules/10.Detection Mechanisms_files/css2_002.css 2.4 kB
  • Maldev Modules/11.Windows Processes_files/css2.css 2.4 kB
  • Maldev Modules/12.Undocumented Structures_files/css2_002.css 2.4 kB
  • Maldev Modules/13.Payload Placement - .data & .rdata Sections_files/css2.css 2.4 kB
  • Maldev Modules/14.Payload Placement - .text Section_files/css2.css 2.4 kB
  • Maldev Modules/15.Payload Placement - .rsrc Section_files/css2.css 2.4 kB
  • Maldev Modules/16.Introduction To Payload Encryption_files/css2.css 2.4 kB
  • Maldev Modules/17.Payload Encryption - XOR_files/css2.css 2.4 kB
  • Maldev Modules/18.Payload Encryption - RC4_files/css2.css 2.4 kB
  • Maldev Modules/19.Payload Encryption - AES Encryption_files/css2.css 2.4 kB
  • Maldev Modules/20.Evading Microsoft Defender Static Analysis_files/css2_002.css 2.4 kB
  • Maldev Modules/21.Payload Obfuscation - IPv4_IPv6Fuscation_files/css2.css 2.4 kB
  • Maldev Modules/22.Payload Obfuscation - MACFucscation_files/css2.css 2.4 kB
  • Maldev Modules/23.Payload Obfuscation - UUIDFuscation_files/css2.css 2.4 kB
  • Maldev Modules/24.Maldev Academy Tool - HellShell_files/css2.css 2.4 kB
  • Maldev Modules/25.Maldev Academy Tool - MiniShell_files/css2.css 2.4 kB
  • Maldev Modules/26.Local Payload Execution - DLL_files/css2.css 2.4 kB
  • Maldev Modules/27.Local Payload Execution - Shellcode_files/css2.css 2.4 kB
  • Maldev Modules/28.Process Injection - DLL Injection_files/css2.css 2.4 kB
  • Maldev Modules/29.Process Injection - Shellcode Injection_files/css2.css 2.4 kB
  • Maldev Modules/30.Payload Staging - Web Server_files/css2_002.css 2.4 kB
  • Maldev Modules/31.Payload Staging - Windows Registry_files/css2.css 2.4 kB
  • Maldev Modules/32.Malware Binary Signing_files/css2.css 2.4 kB
  • Maldev Modules/33.Process Enumeration - EnumProcesses_files/css2.css 2.4 kB
  • Maldev Modules/34.Process Enumeration - NtQuerySystemInformation_files/css2_002.css 2.4 kB
  • Maldev Modules/35.Thread Hijacking - Local Thread Creation_files/css2.css 2.4 kB
  • Maldev Modules/36.Thread Hijacking - Remote Thread Creation_files/css2.css 2.4 kB
  • Maldev Modules/37.Thread Hijacking - Local Thread Enumeration_files/css2.css 2.4 kB
  • Maldev Modules/38.Thread Hijacking - Remote Thread Enumeration_files/css2.css 2.4 kB
  • Maldev Modules/39.APC Injection_files/css2.css 2.4 kB
  • Maldev Modules/40.Early Bird APC Injection_files/css2.css 2.4 kB
  • Maldev Modules/41.Callback Code Execution_files/css2.css 2.4 kB
  • Maldev Modules/42.Local Mapping Injection_files/css2_002.css 2.4 kB
  • Maldev Modules/43.Remote Mapping Injection_files/css2.css 2.4 kB
  • Maldev Modules/44.Local Function Stomping Injection_files/css2.css 2.4 kB
  • Maldev Modules/45.Remote Function Stomping Injection_files/css2.css 2.4 kB
  • Maldev Modules/46.Payload Execution Control_files/css2.css 2.4 kB
  • Maldev Modules/47.Spoofing PPID_files/css2.css 2.4 kB
  • Maldev Modules/48.Process Argument Spoofing (1)_files/css2.css 2.4 kB
  • Maldev Modules/49.Process Argument Spoofing (2)_files/css2.css 2.4 kB
  • Maldev Modules/50.Parsing PE Headers_files/css2.css 2.4 kB
  • Maldev Modules/51.String Hashing_files/css2.css 2.4 kB
  • Maldev Modules/52.IAT Hiding & Obfuscation - Introduction_files/css2.css 2.4 kB
  • Maldev Modules/53.IAT Hiding & Obfuscation - Custom GetProcAddress_files/css2.css 2.4 kB
  • Maldev Modules/54.IAT Hiding & Obfuscation - Custom GetModuleHandle_files/css2.css 2.4 kB
  • Maldev Modules/55.IAT Hiding & Obfuscation - API Hashing_files/css2.css 2.4 kB
  • Maldev Modules/56.IAT Hiding & Obfuscation - Custom Pseudo Handles_files/css2.css 2.4 kB
  • Maldev Modules/57.IAT Hiding & Obfuscation - Compile Time API Hashing_files/css2.css 2.4 kB
  • Maldev Modules/58.API Hooking - Introduction_files/css2.css 2.4 kB
  • Maldev Modules/59.API Hooking - Detours Library_files/css2.css 2.4 kB
  • Maldev Modules/60.API Hooking - Minhook Library_files/css2.css 2.4 kB
  • Maldev Modules/61.API Hooking - Custom Code_files/css2.css 2.4 kB
  • Maldev Modules/62.API Hooking - Using Windows APIs_files/css2.css 2.4 kB
  • Maldev Modules/63.Syscalls - Introduction_files/css2.css 2.4 kB
  • Maldev Modules/64.Syscalls - Userland Hooking_files/css2.css 2.4 kB
  • Maldev Modules/65.Syscalls - SysWhispers_files/css2.css 2.4 kB
  • Maldev Modules/66.Syscalls - Hell's Gate_files/css2.css 2.4 kB
  • Maldev Modules/67.Syscalls - Reimplementing Classic Injection_files/css2.css 2.4 kB
  • Maldev Modules/68.Syscalls - Reimplementing Mapping Injection_files/css2.css 2.4 kB
  • Maldev Modules/69.Syscalls - Reimplementing APC Injection_files/css2.css 2.4 kB
  • Maldev Modules/70.Anti-Analysis - Introduction_files/css2.css 2.4 kB
  • Maldev Modules/71.Anti-Debugging - Multiple Techniques_files/css2.css 2.4 kB
  • Maldev Modules/72.Anti-Debugging - Self-Deletion_files/css2.css 2.4 kB
  • Maldev Modules/73.Anti-Virtual Environments - Multiple Techniques_files/css2.css 2.4 kB
  • Maldev Modules/74.Anti-Virtual Environments - Multiple Delay Execution Techniques_files/css2.css 2.4 kB
  • Maldev Modules/75.Anti-Virtual Environments - API Hammering_files/css2.css 2.4 kB
  • Maldev Modules/76.Binary Entropy Reduction_files/css2.css 2.4 kB
  • Maldev Modules/77.Brute Force Decryption_files/css2.css 2.4 kB
  • Maldev Modules/78.MalDev Academy Tool - KeyGuard_files/css2.css 2.4 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/css2.css 2.4 kB
  • Maldev Modules/80.IAT Camouflage_files/css2.css 2.4 kB
  • Maldev Modules/81.Bypassing AVs_files/css2.css 2.4 kB
  • Maldev Modules/82.Introduction To EDRs_files/css2_002.css 2.4 kB
  • Maldev Modules/83.NTDLL Unhooking - Introduction_files/css2.css 2.4 kB
  • Maldev Modules/84.NTDLL Unhooking - From Disk_files/css2.css 2.4 kB
  • Maldev Modules/85.NTDLL Unhooking - From KnownDlls Directory_files/css2.css 2.4 kB
  • Maldev Modules/86.NTDLL Unhooking - From a Suspended Process_files/css2.css 2.4 kB
  • Maldev Modules/87.NTDLL Unhooking - From a Web Server_files/css2.css 2.4 kB
  • Maldev Modules/88.Updating Hell's Gate_files/css2.css 2.4 kB
  • Maldev Modules/89.Indirect Syscalls - HellsHall_files/css2.css 2.4 kB
  • Maldev Modules/90.Block DLL Policy_files/css2.css 2.4 kB
  • Maldev Modules/91.Diving Into NtCreateUserProcess_files/css2.css 2.4 kB
  • Maldev Modules/Modules_files/css2.css 2.4 kB
  • MalDev/desktop.ini 2.1 kB
  • MalDev/Challenges/06.txt 1.8 kB
  • MalDev/Challenges/04.txt 1.5 kB
  • Maldev Modules/1.Welcome Module_files/viewer.css 1.5 kB
  • Maldev Modules/2.Introduction To Malware Development_files/viewer.css 1.5 kB
  • Maldev Modules/3.Required Tools_files/viewer.css 1.5 kB
  • Maldev Modules/4.Coding Basics_files/viewer.css 1.5 kB
  • Maldev Modules/5.Windows Architecture_files/viewer.css 1.5 kB
  • Maldev Modules/6.Windows Memory Management_files/viewer.css 1.5 kB
  • Maldev Modules/7.Introduction To The Windows API_files/viewer.css 1.5 kB
  • Maldev Modules/8.Portable Executable Format_files/viewer.css 1.5 kB
  • Maldev Modules/9.Dynamic-Link Library_files/viewer.css 1.5 kB
  • Maldev Modules/10.Detection Mechanisms_files/viewer.css 1.5 kB
  • Maldev Modules/11.Windows Processes_files/viewer.css 1.5 kB
  • Maldev Modules/12.Undocumented Structures_files/viewer.css 1.5 kB
  • Maldev Modules/13.Payload Placement - .data & .rdata Sections_files/viewer.css 1.5 kB
  • Maldev Modules/14.Payload Placement - .text Section_files/viewer.css 1.5 kB
  • Maldev Modules/15.Payload Placement - .rsrc Section_files/viewer.css 1.5 kB
  • Maldev Modules/16.Introduction To Payload Encryption_files/viewer.css 1.5 kB
  • Maldev Modules/17.Payload Encryption - XOR_files/viewer.css 1.5 kB
  • Maldev Modules/18.Payload Encryption - RC4_files/viewer.css 1.5 kB
  • Maldev Modules/19.Payload Encryption - AES Encryption_files/viewer.css 1.5 kB
  • Maldev Modules/20.Evading Microsoft Defender Static Analysis_files/viewer.css 1.5 kB
  • Maldev Modules/21.Payload Obfuscation - IPv4_IPv6Fuscation_files/viewer.css 1.5 kB
  • Maldev Modules/22.Payload Obfuscation - MACFucscation_files/viewer.css 1.5 kB
  • Maldev Modules/23.Payload Obfuscation - UUIDFuscation_files/viewer.css 1.5 kB
  • Maldev Modules/24.Maldev Academy Tool - HellShell_files/viewer.css 1.5 kB
  • Maldev Modules/25.Maldev Academy Tool - MiniShell_files/viewer.css 1.5 kB
  • Maldev Modules/26.Local Payload Execution - DLL_files/viewer.css 1.5 kB
  • Maldev Modules/27.Local Payload Execution - Shellcode_files/viewer.css 1.5 kB
  • Maldev Modules/28.Process Injection - DLL Injection_files/viewer.css 1.5 kB
  • Maldev Modules/29.Process Injection - Shellcode Injection_files/viewer.css 1.5 kB
  • Maldev Modules/30.Payload Staging - Web Server_files/viewer.css 1.5 kB
  • Maldev Modules/31.Payload Staging - Windows Registry_files/viewer.css 1.5 kB
  • Maldev Modules/32.Malware Binary Signing_files/viewer.css 1.5 kB
  • Maldev Modules/33.Process Enumeration - EnumProcesses_files/viewer.css 1.5 kB
  • Maldev Modules/34.Process Enumeration - NtQuerySystemInformation_files/viewer.css 1.5 kB
  • Maldev Modules/35.Thread Hijacking - Local Thread Creation_files/viewer.css 1.5 kB
  • Maldev Modules/36.Thread Hijacking - Remote Thread Creation_files/viewer.css 1.5 kB
  • Maldev Modules/37.Thread Hijacking - Local Thread Enumeration_files/viewer.css 1.5 kB
  • Maldev Modules/38.Thread Hijacking - Remote Thread Enumeration_files/viewer.css 1.5 kB
  • Maldev Modules/39.APC Injection_files/viewer.css 1.5 kB
  • Maldev Modules/40.Early Bird APC Injection_files/viewer.css 1.5 kB
  • Maldev Modules/41.Callback Code Execution_files/viewer.css 1.5 kB
  • Maldev Modules/42.Local Mapping Injection_files/viewer.css 1.5 kB
  • Maldev Modules/43.Remote Mapping Injection_files/viewer.css 1.5 kB
  • Maldev Modules/44.Local Function Stomping Injection_files/viewer.css 1.5 kB
  • Maldev Modules/45.Remote Function Stomping Injection_files/viewer.css 1.5 kB
  • Maldev Modules/46.Payload Execution Control_files/viewer.css 1.5 kB
  • Maldev Modules/47.Spoofing PPID_files/viewer.css 1.5 kB
  • Maldev Modules/48.Process Argument Spoofing (1)_files/viewer.css 1.5 kB
  • Maldev Modules/49.Process Argument Spoofing (2)_files/viewer.css 1.5 kB
  • Maldev Modules/50.Parsing PE Headers_files/viewer.css 1.5 kB
  • Maldev Modules/51.String Hashing_files/viewer.css 1.5 kB
  • Maldev Modules/52.IAT Hiding & Obfuscation - Introduction_files/viewer.css 1.5 kB
  • Maldev Modules/53.IAT Hiding & Obfuscation - Custom GetProcAddress_files/viewer.css 1.5 kB
  • Maldev Modules/54.IAT Hiding & Obfuscation - Custom GetModuleHandle_files/viewer.css 1.5 kB
  • Maldev Modules/55.IAT Hiding & Obfuscation - API Hashing_files/viewer.css 1.5 kB
  • Maldev Modules/56.IAT Hiding & Obfuscation - Custom Pseudo Handles_files/viewer.css 1.5 kB
  • Maldev Modules/57.IAT Hiding & Obfuscation - Compile Time API Hashing_files/viewer.css 1.5 kB
  • Maldev Modules/58.API Hooking - Introduction_files/viewer.css 1.5 kB
  • Maldev Modules/59.API Hooking - Detours Library_files/viewer.css 1.5 kB
  • Maldev Modules/60.API Hooking - Minhook Library_files/viewer.css 1.5 kB
  • Maldev Modules/61.API Hooking - Custom Code_files/viewer.css 1.5 kB
  • Maldev Modules/62.API Hooking - Using Windows APIs_files/viewer.css 1.5 kB
  • Maldev Modules/63.Syscalls - Introduction_files/viewer.css 1.5 kB
  • Maldev Modules/64.Syscalls - Userland Hooking_files/viewer.css 1.5 kB
  • Maldev Modules/65.Syscalls - SysWhispers_files/viewer.css 1.5 kB
  • Maldev Modules/66.Syscalls - Hell's Gate_files/viewer.css 1.5 kB
  • Maldev Modules/67.Syscalls - Reimplementing Classic Injection_files/viewer.css 1.5 kB
  • Maldev Modules/68.Syscalls - Reimplementing Mapping Injection_files/viewer.css 1.5 kB
  • Maldev Modules/69.Syscalls - Reimplementing APC Injection_files/viewer.css 1.5 kB
  • Maldev Modules/70.Anti-Analysis - Introduction_files/viewer.css 1.5 kB
  • Maldev Modules/71.Anti-Debugging - Multiple Techniques_files/viewer.css 1.5 kB
  • Maldev Modules/72.Anti-Debugging - Self-Deletion_files/viewer.css 1.5 kB
  • Maldev Modules/73.Anti-Virtual Environments - Multiple Techniques_files/viewer.css 1.5 kB
  • Maldev Modules/74.Anti-Virtual Environments - Multiple Delay Execution Techniques_files/viewer.css 1.5 kB
  • Maldev Modules/75.Anti-Virtual Environments - API Hammering_files/viewer.css 1.5 kB
  • Maldev Modules/76.Binary Entropy Reduction_files/viewer.css 1.5 kB
  • Maldev Modules/77.Brute Force Decryption_files/viewer.css 1.5 kB
  • Maldev Modules/78.MalDev Academy Tool - KeyGuard_files/viewer.css 1.5 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/viewer.css 1.5 kB
  • Maldev Modules/80.IAT Camouflage_files/viewer.css 1.5 kB
  • Maldev Modules/81.Bypassing AVs_files/viewer.css 1.5 kB
  • Maldev Modules/82.Introduction To EDRs_files/viewer.css 1.5 kB
  • Maldev Modules/83.NTDLL Unhooking - Introduction_files/viewer.css 1.5 kB
  • Maldev Modules/84.NTDLL Unhooking - From Disk_files/viewer.css 1.5 kB
  • Maldev Modules/85.NTDLL Unhooking - From KnownDlls Directory_files/viewer.css 1.5 kB
  • Maldev Modules/86.NTDLL Unhooking - From a Suspended Process_files/viewer.css 1.5 kB
  • Maldev Modules/87.NTDLL Unhooking - From a Web Server_files/viewer.css 1.5 kB
  • Maldev Modules/88.Updating Hell's Gate_files/viewer.css 1.5 kB
  • Maldev Modules/89.Indirect Syscalls - HellsHall_files/viewer.css 1.5 kB
  • Maldev Modules/90.Block DLL Policy_files/viewer.css 1.5 kB
  • Maldev Modules/91.Diving Into NtCreateUserProcess_files/viewer.css 1.5 kB
  • Maldev Modules/1.Welcome Module_files/css2_002.css 1.1 kB
  • Maldev Modules/2.Introduction To Malware Development_files/css2_002.css 1.1 kB
  • Maldev Modules/3.Required Tools_files/css2_002.css 1.1 kB
  • Maldev Modules/4.Coding Basics_files/css2_002.css 1.1 kB
  • Maldev Modules/5.Windows Architecture_files/css2_002.css 1.1 kB
  • Maldev Modules/6.Windows Memory Management_files/css2_002.css 1.1 kB
  • Maldev Modules/7.Introduction To The Windows API_files/css2_002.css 1.1 kB
  • Maldev Modules/8.Portable Executable Format_files/css2_002.css 1.1 kB
  • Maldev Modules/9.Dynamic-Link Library_files/css2_002.css 1.1 kB
  • Maldev Modules/10.Detection Mechanisms_files/css2.css 1.1 kB
  • Maldev Modules/11.Windows Processes_files/css2_002.css 1.1 kB
  • Maldev Modules/12.Undocumented Structures_files/css2.css 1.1 kB
  • Maldev Modules/13.Payload Placement - .data & .rdata Sections_files/css2_002.css 1.1 kB
  • Maldev Modules/14.Payload Placement - .text Section_files/css2_002.css 1.1 kB
  • Maldev Modules/15.Payload Placement - .rsrc Section_files/css2_002.css 1.1 kB
  • Maldev Modules/16.Introduction To Payload Encryption_files/css2_002.css 1.1 kB
  • Maldev Modules/17.Payload Encryption - XOR_files/css2_002.css 1.1 kB
  • Maldev Modules/18.Payload Encryption - RC4_files/css2_002.css 1.1 kB
  • Maldev Modules/19.Payload Encryption - AES Encryption_files/css2_002.css 1.1 kB
  • Maldev Modules/20.Evading Microsoft Defender Static Analysis_files/css2.css 1.1 kB
  • Maldev Modules/21.Payload Obfuscation - IPv4_IPv6Fuscation_files/css2_002.css 1.1 kB
  • Maldev Modules/22.Payload Obfuscation - MACFucscation_files/css2_002.css 1.1 kB
  • Maldev Modules/23.Payload Obfuscation - UUIDFuscation_files/css2_002.css 1.1 kB
  • Maldev Modules/24.Maldev Academy Tool - HellShell_files/css2_002.css 1.1 kB
  • Maldev Modules/25.Maldev Academy Tool - MiniShell_files/css2_002.css 1.1 kB
  • Maldev Modules/26.Local Payload Execution - DLL_files/css2_002.css 1.1 kB
  • Maldev Modules/27.Local Payload Execution - Shellcode_files/css2_002.css 1.1 kB
  • Maldev Modules/28.Process Injection - DLL Injection_files/css2_002.css 1.1 kB
  • Maldev Modules/29.Process Injection - Shellcode Injection_files/css2_002.css 1.1 kB
  • Maldev Modules/30.Payload Staging - Web Server_files/css2.css 1.1 kB
  • Maldev Modules/31.Payload Staging - Windows Registry_files/css2_002.css 1.1 kB
  • Maldev Modules/32.Malware Binary Signing_files/css2_002.css 1.1 kB
  • Maldev Modules/33.Process Enumeration - EnumProcesses_files/css2_002.css 1.1 kB
  • Maldev Modules/34.Process Enumeration - NtQuerySystemInformation_files/css2.css 1.1 kB
  • Maldev Modules/35.Thread Hijacking - Local Thread Creation_files/css2_002.css 1.1 kB
  • Maldev Modules/36.Thread Hijacking - Remote Thread Creation_files/css2_002.css 1.1 kB
  • Maldev Modules/37.Thread Hijacking - Local Thread Enumeration_files/css2_002.css 1.1 kB
  • Maldev Modules/38.Thread Hijacking - Remote Thread Enumeration_files/css2_002.css 1.1 kB
  • Maldev Modules/39.APC Injection_files/css2_002.css 1.1 kB
  • Maldev Modules/40.Early Bird APC Injection_files/css2_002.css 1.1 kB
  • Maldev Modules/41.Callback Code Execution_files/css2_002.css 1.1 kB
  • Maldev Modules/42.Local Mapping Injection_files/css2.css 1.1 kB
  • Maldev Modules/43.Remote Mapping Injection_files/css2_002.css 1.1 kB
  • Maldev Modules/44.Local Function Stomping Injection_files/css2_002.css 1.1 kB
  • Maldev Modules/45.Remote Function Stomping Injection_files/css2_002.css 1.1 kB
  • Maldev Modules/46.Payload Execution Control_files/css2_002.css 1.1 kB
  • Maldev Modules/47.Spoofing PPID_files/css2_002.css 1.1 kB
  • Maldev Modules/48.Process Argument Spoofing (1)_files/css2_002.css 1.1 kB
  • Maldev Modules/49.Process Argument Spoofing (2)_files/css2_002.css 1.1 kB
  • Maldev Modules/50.Parsing PE Headers_files/css2_002.css 1.1 kB
  • Maldev Modules/51.String Hashing_files/css2_002.css 1.1 kB
  • Maldev Modules/52.IAT Hiding & Obfuscation - Introduction_files/css2_002.css 1.1 kB
  • Maldev Modules/53.IAT Hiding & Obfuscation - Custom GetProcAddress_files/css2_002.css 1.1 kB
  • Maldev Modules/54.IAT Hiding & Obfuscation - Custom GetModuleHandle_files/css2_002.css 1.1 kB
  • Maldev Modules/55.IAT Hiding & Obfuscation - API Hashing_files/css2_002.css 1.1 kB
  • Maldev Modules/56.IAT Hiding & Obfuscation - Custom Pseudo Handles_files/css2_002.css 1.1 kB
  • Maldev Modules/57.IAT Hiding & Obfuscation - Compile Time API Hashing_files/css2_002.css 1.1 kB
  • Maldev Modules/58.API Hooking - Introduction_files/css2_002.css 1.1 kB
  • Maldev Modules/59.API Hooking - Detours Library_files/css2_002.css 1.1 kB
  • Maldev Modules/60.API Hooking - Minhook Library_files/css2_002.css 1.1 kB
  • Maldev Modules/61.API Hooking - Custom Code_files/css2_002.css 1.1 kB
  • Maldev Modules/62.API Hooking - Using Windows APIs_files/css2_002.css 1.1 kB
  • Maldev Modules/63.Syscalls - Introduction_files/css2_002.css 1.1 kB
  • Maldev Modules/64.Syscalls - Userland Hooking_files/css2_002.css 1.1 kB
  • Maldev Modules/65.Syscalls - SysWhispers_files/css2_002.css 1.1 kB
  • Maldev Modules/66.Syscalls - Hell's Gate_files/css2_002.css 1.1 kB
  • Maldev Modules/67.Syscalls - Reimplementing Classic Injection_files/css2_002.css 1.1 kB
  • Maldev Modules/68.Syscalls - Reimplementing Mapping Injection_files/css2_002.css 1.1 kB
  • Maldev Modules/69.Syscalls - Reimplementing APC Injection_files/css2_002.css 1.1 kB
  • Maldev Modules/70.Anti-Analysis - Introduction_files/css2_002.css 1.1 kB
  • Maldev Modules/71.Anti-Debugging - Multiple Techniques_files/css2_002.css 1.1 kB
  • Maldev Modules/72.Anti-Debugging - Self-Deletion_files/css2_002.css 1.1 kB
  • Maldev Modules/73.Anti-Virtual Environments - Multiple Techniques_files/css2_002.css 1.1 kB
  • Maldev Modules/74.Anti-Virtual Environments - Multiple Delay Execution Techniques_files/css2_002.css 1.1 kB
  • Maldev Modules/75.Anti-Virtual Environments - API Hammering_files/css2_002.css 1.1 kB
  • Maldev Modules/76.Binary Entropy Reduction_files/css2_002.css 1.1 kB
  • Maldev Modules/77.Brute Force Decryption_files/css2_002.css 1.1 kB
  • Maldev Modules/78.MalDev Academy Tool - KeyGuard_files/css2_002.css 1.1 kB
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/css2_002.css 1.1 kB
  • Maldev Modules/80.IAT Camouflage_files/css2_002.css 1.1 kB
  • Maldev Modules/81.Bypassing AVs_files/css2_002.css 1.1 kB
  • Maldev Modules/82.Introduction To EDRs_files/css2.css 1.1 kB
  • Maldev Modules/83.NTDLL Unhooking - Introduction_files/css2_002.css 1.1 kB
  • Maldev Modules/84.NTDLL Unhooking - From Disk_files/css2_002.css 1.1 kB
  • Maldev Modules/85.NTDLL Unhooking - From KnownDlls Directory_files/css2_002.css 1.1 kB
  • Maldev Modules/86.NTDLL Unhooking - From a Suspended Process_files/css2_002.css 1.1 kB
  • Maldev Modules/87.NTDLL Unhooking - From a Web Server_files/css2_002.css 1.1 kB
  • Maldev Modules/88.Updating Hell's Gate_files/css2_002.css 1.1 kB
  • Maldev Modules/89.Indirect Syscalls - HellsHall_files/css2_002.css 1.1 kB
  • Maldev Modules/90.Block DLL Policy_files/css2_002.css 1.1 kB
  • Maldev Modules/91.Diving Into NtCreateUserProcess_files/css2_002.css 1.1 kB
  • Maldev Modules/Modules_files/css2_002.css 1.1 kB
  • Maldev Modules/13.Payload Placement - .data & .rdata Sections_files/dl.svg 1.1 kB
  • Maldev Modules/14.Payload Placement - .text Section_files/dl.svg 1.1 kB
  • Maldev Modules/15.Payload Placement - .rsrc Section_files/dl.svg 1.1 kB
  • Maldev Modules/17.Payload Encryption - XOR_files/dl.svg 1.1 kB
  • Maldev Modules/18.Payload Encryption - RC4_files/dl.svg 1.1 kB
  • Maldev Modules/19.Payload Encryption - AES Encryption_files/dl.svg 1.1 kB
  • Maldev Modules/20.Evading Microsoft Defender Static Analysis_files/dl.svg 1.1 kB
  • Maldev Modules/21.Payload Obfuscation - IPv4_IPv6Fuscation_files/dl.svg 1.1 kB
  • Maldev Modules/22.Payload Obfuscation - MACFucscation_files/dl.svg 1.1 kB
  • Maldev Modules/23.Payload Obfuscation - UUIDFuscation_files/dl.svg 1.1 kB
  • Maldev Modules/24.Maldev Academy Tool - HellShell_files/dl.svg 1.1 kB
  • Maldev Modules/25.Maldev Academy Tool - MiniShell_files/dl.svg 1.1 kB
  • Maldev Modules/26.Local Payload Execution - DLL_files/dl.svg 1.1 kB
  • Maldev Modules/27.Local Payload Execution - Shellcode_files/dl.svg 1.1 kB
  • Maldev Modules/28.Process Injection - DLL Injection_files/dl.svg 1.1 kB
  • Maldev Modules/29.Process Injection - Shellcode Injection_files/dl.svg 1.1 kB
  • Maldev Modules/30.Payload Staging - Web Server_files/dl.svg 1.1 kB
  • Maldev Modules/31.Payload Staging - Windows Registry_files/dl.svg 1.1 kB
  • Maldev Modules/33.Process Enumeration - EnumProcesses_files/dl.svg 1.1 kB
  • Maldev Modules/34.Process Enumeration - NtQuerySystemInformation_files/dl.svg 1.1 kB
  • Maldev Modules/35.Thread Hijacking - Local Thread Creation_files/dl.svg 1.1 kB
  • Maldev Modules/36.Thread Hijacking - Remote Thread Creation_files/dl.svg 1.1 kB
  • Maldev Modules/37.Thread Hijacking - Local Thread Enumeration_files/dl.svg 1.1 kB
  • Maldev Modules/38.Thread Hijacking - Remote Thread Enumeration_files/dl.svg 1.1 kB
  • Maldev Modules/39.APC Injection_files/dl.svg 1.1 kB
  • Maldev Modules/40.Early Bird APC Injection_files/dl.svg 1.1 kB
  • Maldev Modules/41.Callback Code Execution_files/dl.svg 1.1 kB
  • Maldev Modules/42.Local Mapping Injection_files/dl.svg 1.1 kB
  • Maldev Modules/43.Remote Mapping Injection_files/dl.svg 1.1 kB
  • Maldev Modules/44.Local Function Stomping Injection_files/dl.svg 1.1 kB
  • Maldev Modules/45.Remote Function Stomping Injection_files/dl.svg 1.1 kB
  • Maldev Modules/46.Payload Execution Control_files/dl.svg 1.1 kB
  • Maldev Modules/47.Spoofing PPID_files/dl.svg 1.1 kB
  • Maldev Modules/48.Process Argument Spoofing (1)_files/dl.svg 1.1 kB
  • Maldev Modules/49.Process Argument Spoofing (2)_files/dl.svg 1.1 kB
  • Maldev Modules/50.Parsing PE Headers_files/dl.svg 1.1 kB
  • Maldev Modules/51.String Hashing_files/dl.svg 1.1 kB
  • Maldev Modules/53.IAT Hiding & Obfuscation - Custom GetProcAddress_files/dl.svg 1.1 kB
  • Maldev Modules/54.IAT Hiding & Obfuscation - Custom GetModuleHandle_files/dl.svg 1.1 kB
  • Maldev Modules/55.IAT Hiding & Obfuscation - API Hashing_files/dl.svg 1.1 kB
  • Maldev Modules/57.IAT Hiding & Obfuscation - Compile Time API Hashing_files/dl.svg 1.1 kB
  • Maldev Modules/59.API Hooking - Detours Library_files/dl.svg 1.1 kB
  • Maldev Modules/60.API Hooking - Minhook Library_files/dl.svg 1.1 kB
  • Maldev Modules/61.API Hooking - Custom Code_files/dl.svg 1.1 kB
  • Maldev Modules/62.API Hooking - Using Windows APIs_files/dl.svg 1.1 kB
  • Maldev Modules/64.Syscalls - Userland Hooking_files/dl.svg 1.1 kB
  • Maldev Modules/67.Syscalls - Reimplementing Classic Injection_files/dl.svg 1.1 kB
  • Maldev Modules/68.Syscalls - Reimplementing Mapping Injection_files/dl.svg 1.1 kB
  • Maldev Modules/69.Syscalls - Reimplementing APC Injection_files/dl.svg 1.1 kB
  • Maldev Modules/71.Anti-Debugging - Multiple Techniques_files/dl.svg 1.1 kB
  • Maldev Modules/72.Anti-Debugging - Self-Deletion_files/dl.svg 1.1 kB
  • Maldev Modules/73.Anti-Virtual Environments - Multiple Techniques_files/dl.svg 1.1 kB
  • Maldev Modules/74.Anti-Virtual Environments - Multiple Delay Execution Techniques_files/dl.svg 1.1 kB
  • Maldev Modules/75.Anti-Virtual Environments - API Hammering_files/dl.svg 1.1 kB
  • Maldev Modules/76.Binary Entropy Reduction_files/dl.svg 1.1 kB
  • Maldev Modules/77.Brute Force Decryption_files/dl.svg 1.1 kB
  • Maldev Modules/78.MalDev Academy Tool - KeyGuard_files/dl.svg 1.1 kB
  • Maldev Modules/80.IAT Camouflage_files/dl.svg 1.1 kB
  • Maldev Modules/81.Bypassing AVs_files/dl.svg 1.1 kB
  • Maldev Modules/84.NTDLL Unhooking - From Disk_files/dl.svg 1.1 kB
  • Maldev Modules/85.NTDLL Unhooking - From KnownDlls Directory_files/dl.svg 1.1 kB
  • Maldev Modules/86.NTDLL Unhooking - From a Suspended Process_files/dl.svg 1.1 kB
  • Maldev Modules/87.NTDLL Unhooking - From a Web Server_files/dl.svg 1.1 kB
  • Maldev Modules/88.Updating Hell's Gate_files/dl.svg 1.1 kB
  • Maldev Modules/89.Indirect Syscalls - HellsHall_files/dl.svg 1.1 kB
  • Maldev Modules/90.Block DLL Policy_files/dl.svg 1.1 kB
  • Maldev Modules/91.Diving Into NtCreateUserProcess_files/dl.svg 1.1 kB
  • MalDev/Challenges/20.txt 1.0 kB
  • MalDev/Challenges/02.txt 935 Bytes
  • MalDev/76-EntropyCalc.zip 926 Bytes
  • Maldev Modules/76.EntropyCalc.zip 926 Bytes
  • MalDev/Challenges/13.txt 921 Bytes
  • MalDev/Challenges/05.txt 861 Bytes
  • Maldev Modules/1.Welcome Module_files/enlarge.svg 835 Bytes
  • Maldev Modules/2.Introduction To Malware Development_files/enlarge.svg 835 Bytes
  • Maldev Modules/3.Required Tools_files/enlarge.svg 835 Bytes
  • Maldev Modules/4.Coding Basics_files/enlarge.svg 835 Bytes
  • Maldev Modules/5.Windows Architecture_files/enlarge.svg 835 Bytes
  • Maldev Modules/6.Windows Memory Management_files/enlarge.svg 835 Bytes
  • Maldev Modules/7.Introduction To The Windows API_files/enlarge.svg 835 Bytes
  • Maldev Modules/8.Portable Executable Format_files/enlarge.svg 835 Bytes
  • Maldev Modules/9.Dynamic-Link Library_files/enlarge.svg 835 Bytes
  • Maldev Modules/10.Detection Mechanisms_files/enlarge.svg 835 Bytes
  • Maldev Modules/11.Windows Processes_files/enlarge.svg 835 Bytes
  • Maldev Modules/12.Undocumented Structures_files/enlarge.svg 835 Bytes
  • Maldev Modules/13.Payload Placement - .data & .rdata Sections_files/enlarge.svg 835 Bytes
  • Maldev Modules/14.Payload Placement - .text Section_files/enlarge.svg 835 Bytes
  • Maldev Modules/15.Payload Placement - .rsrc Section_files/enlarge.svg 835 Bytes
  • Maldev Modules/16.Introduction To Payload Encryption_files/enlarge.svg 835 Bytes
  • Maldev Modules/17.Payload Encryption - XOR_files/enlarge.svg 835 Bytes
  • Maldev Modules/18.Payload Encryption - RC4_files/enlarge.svg 835 Bytes
  • Maldev Modules/19.Payload Encryption - AES Encryption_files/enlarge.svg 835 Bytes
  • Maldev Modules/20.Evading Microsoft Defender Static Analysis_files/enlarge.svg 835 Bytes
  • Maldev Modules/21.Payload Obfuscation - IPv4_IPv6Fuscation_files/enlarge.svg 835 Bytes
  • Maldev Modules/22.Payload Obfuscation - MACFucscation_files/enlarge.svg 835 Bytes
  • Maldev Modules/23.Payload Obfuscation - UUIDFuscation_files/enlarge.svg 835 Bytes
  • Maldev Modules/24.Maldev Academy Tool - HellShell_files/enlarge.svg 835 Bytes
  • Maldev Modules/25.Maldev Academy Tool - MiniShell_files/enlarge.svg 835 Bytes
  • Maldev Modules/26.Local Payload Execution - DLL_files/enlarge.svg 835 Bytes
  • Maldev Modules/27.Local Payload Execution - Shellcode_files/enlarge.svg 835 Bytes
  • Maldev Modules/28.Process Injection - DLL Injection_files/enlarge.svg 835 Bytes
  • Maldev Modules/29.Process Injection - Shellcode Injection_files/enlarge.svg 835 Bytes
  • Maldev Modules/30.Payload Staging - Web Server_files/enlarge.svg 835 Bytes
  • Maldev Modules/31.Payload Staging - Windows Registry_files/enlarge.svg 835 Bytes
  • Maldev Modules/32.Malware Binary Signing_files/enlarge.svg 835 Bytes
  • Maldev Modules/33.Process Enumeration - EnumProcesses_files/enlarge.svg 835 Bytes
  • Maldev Modules/34.Process Enumeration - NtQuerySystemInformation_files/enlarge.svg 835 Bytes
  • Maldev Modules/35.Thread Hijacking - Local Thread Creation_files/enlarge.svg 835 Bytes
  • Maldev Modules/36.Thread Hijacking - Remote Thread Creation_files/enlarge.svg 835 Bytes
  • Maldev Modules/37.Thread Hijacking - Local Thread Enumeration_files/enlarge.svg 835 Bytes
  • Maldev Modules/38.Thread Hijacking - Remote Thread Enumeration_files/enlarge.svg 835 Bytes
  • Maldev Modules/39.APC Injection_files/enlarge.svg 835 Bytes
  • Maldev Modules/40.Early Bird APC Injection_files/enlarge.svg 835 Bytes
  • Maldev Modules/41.Callback Code Execution_files/enlarge.svg 835 Bytes
  • Maldev Modules/42.Local Mapping Injection_files/enlarge.svg 835 Bytes
  • Maldev Modules/43.Remote Mapping Injection_files/enlarge.svg 835 Bytes
  • Maldev Modules/44.Local Function Stomping Injection_files/enlarge.svg 835 Bytes
  • Maldev Modules/45.Remote Function Stomping Injection_files/enlarge.svg 835 Bytes
  • Maldev Modules/46.Payload Execution Control_files/enlarge.svg 835 Bytes
  • Maldev Modules/47.Spoofing PPID_files/enlarge.svg 835 Bytes
  • Maldev Modules/48.Process Argument Spoofing (1)_files/enlarge.svg 835 Bytes
  • Maldev Modules/49.Process Argument Spoofing (2)_files/enlarge.svg 835 Bytes
  • Maldev Modules/50.Parsing PE Headers_files/enlarge.svg 835 Bytes
  • Maldev Modules/51.String Hashing_files/enlarge.svg 835 Bytes
  • Maldev Modules/52.IAT Hiding & Obfuscation - Introduction_files/enlarge.svg 835 Bytes
  • Maldev Modules/53.IAT Hiding & Obfuscation - Custom GetProcAddress_files/enlarge.svg 835 Bytes
  • Maldev Modules/54.IAT Hiding & Obfuscation - Custom GetModuleHandle_files/enlarge.svg 835 Bytes
  • Maldev Modules/55.IAT Hiding & Obfuscation - API Hashing_files/enlarge.svg 835 Bytes
  • Maldev Modules/56.IAT Hiding & Obfuscation - Custom Pseudo Handles_files/enlarge.svg 835 Bytes
  • Maldev Modules/57.IAT Hiding & Obfuscation - Compile Time API Hashing_files/enlarge.svg 835 Bytes
  • Maldev Modules/58.API Hooking - Introduction_files/enlarge.svg 835 Bytes
  • Maldev Modules/59.API Hooking - Detours Library_files/enlarge.svg 835 Bytes
  • Maldev Modules/60.API Hooking - Minhook Library_files/enlarge.svg 835 Bytes
  • Maldev Modules/61.API Hooking - Custom Code_files/enlarge.svg 835 Bytes
  • Maldev Modules/62.API Hooking - Using Windows APIs_files/enlarge.svg 835 Bytes
  • Maldev Modules/63.Syscalls - Introduction_files/enlarge.svg 835 Bytes
  • Maldev Modules/64.Syscalls - Userland Hooking_files/enlarge.svg 835 Bytes
  • Maldev Modules/65.Syscalls - SysWhispers_files/enlarge.svg 835 Bytes
  • Maldev Modules/66.Syscalls - Hell's Gate_files/enlarge.svg 835 Bytes
  • Maldev Modules/67.Syscalls - Reimplementing Classic Injection_files/enlarge.svg 835 Bytes
  • Maldev Modules/68.Syscalls - Reimplementing Mapping Injection_files/enlarge.svg 835 Bytes
  • Maldev Modules/69.Syscalls - Reimplementing APC Injection_files/enlarge.svg 835 Bytes
  • Maldev Modules/70.Anti-Analysis - Introduction_files/enlarge.svg 835 Bytes
  • Maldev Modules/71.Anti-Debugging - Multiple Techniques_files/enlarge.svg 835 Bytes
  • Maldev Modules/72.Anti-Debugging - Self-Deletion_files/enlarge.svg 835 Bytes
  • Maldev Modules/73.Anti-Virtual Environments - Multiple Techniques_files/enlarge.svg 835 Bytes
  • Maldev Modules/74.Anti-Virtual Environments - Multiple Delay Execution Techniques_files/enlarge.svg 835 Bytes
  • Maldev Modules/75.Anti-Virtual Environments - API Hammering_files/enlarge.svg 835 Bytes
  • Maldev Modules/76.Binary Entropy Reduction_files/enlarge.svg 835 Bytes
  • Maldev Modules/77.Brute Force Decryption_files/enlarge.svg 835 Bytes
  • Maldev Modules/78.MalDev Academy Tool - KeyGuard_files/enlarge.svg 835 Bytes
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/enlarge.svg 835 Bytes
  • Maldev Modules/80.IAT Camouflage_files/enlarge.svg 835 Bytes
  • Maldev Modules/81.Bypassing AVs_files/enlarge.svg 835 Bytes
  • Maldev Modules/82.Introduction To EDRs_files/enlarge.svg 835 Bytes
  • Maldev Modules/83.NTDLL Unhooking - Introduction_files/enlarge.svg 835 Bytes
  • Maldev Modules/84.NTDLL Unhooking - From Disk_files/enlarge.svg 835 Bytes
  • Maldev Modules/85.NTDLL Unhooking - From KnownDlls Directory_files/enlarge.svg 835 Bytes
  • Maldev Modules/86.NTDLL Unhooking - From a Suspended Process_files/enlarge.svg 835 Bytes
  • Maldev Modules/87.NTDLL Unhooking - From a Web Server_files/enlarge.svg 835 Bytes
  • Maldev Modules/88.Updating Hell's Gate_files/enlarge.svg 835 Bytes
  • Maldev Modules/89.Indirect Syscalls - HellsHall_files/enlarge.svg 835 Bytes
  • Maldev Modules/90.Block DLL Policy_files/enlarge.svg 835 Bytes
  • Maldev Modules/91.Diving Into NtCreateUserProcess_files/enlarge.svg 835 Bytes
  • MalDev/Challenges/01.txt 779 Bytes
  • MalDev/Challenges/16.txt 719 Bytes
  • MalDev/Challenges/21.txt 714 Bytes
  • MalDev/Challenges/08.txt 696 Bytes
  • MalDev/Challenges/14.txt 655 Bytes
  • MalDev/Challenges/15.txt 647 Bytes
  • MalDev/Challenges/09.txt 630 Bytes
  • MalDev/Challenges/17.txt 624 Bytes
  • MalDev/Challenges/19.txt 607 Bytes
  • Maldev Modules/Modules_files/update.svg 594 Bytes
  • Maldev Modules/1.Welcome Module_files/template.css 583 Bytes
  • Maldev Modules/2.Introduction To Malware Development_files/template.css 583 Bytes
  • Maldev Modules/3.Required Tools_files/template.css 583 Bytes
  • Maldev Modules/4.Coding Basics_files/template.css 583 Bytes
  • Maldev Modules/5.Windows Architecture_files/template.css 583 Bytes
  • Maldev Modules/6.Windows Memory Management_files/template.css 583 Bytes
  • Maldev Modules/7.Introduction To The Windows API_files/template.css 583 Bytes
  • Maldev Modules/8.Portable Executable Format_files/template.css 583 Bytes
  • Maldev Modules/9.Dynamic-Link Library_files/template.css 583 Bytes
  • Maldev Modules/10.Detection Mechanisms_files/template.css 583 Bytes
  • Maldev Modules/11.Windows Processes_files/template.css 583 Bytes
  • Maldev Modules/12.Undocumented Structures_files/template.css 583 Bytes
  • Maldev Modules/13.Payload Placement - .data & .rdata Sections_files/template.css 583 Bytes
  • Maldev Modules/14.Payload Placement - .text Section_files/template.css 583 Bytes
  • Maldev Modules/15.Payload Placement - .rsrc Section_files/template.css 583 Bytes
  • Maldev Modules/16.Introduction To Payload Encryption_files/template.css 583 Bytes
  • Maldev Modules/17.Payload Encryption - XOR_files/template.css 583 Bytes
  • Maldev Modules/18.Payload Encryption - RC4_files/template.css 583 Bytes
  • Maldev Modules/19.Payload Encryption - AES Encryption_files/template.css 583 Bytes
  • Maldev Modules/20.Evading Microsoft Defender Static Analysis_files/template.css 583 Bytes
  • Maldev Modules/21.Payload Obfuscation - IPv4_IPv6Fuscation_files/template.css 583 Bytes
  • Maldev Modules/22.Payload Obfuscation - MACFucscation_files/template.css 583 Bytes
  • Maldev Modules/23.Payload Obfuscation - UUIDFuscation_files/template.css 583 Bytes
  • Maldev Modules/24.Maldev Academy Tool - HellShell_files/template.css 583 Bytes
  • Maldev Modules/25.Maldev Academy Tool - MiniShell_files/template.css 583 Bytes
  • Maldev Modules/26.Local Payload Execution - DLL_files/template.css 583 Bytes
  • Maldev Modules/27.Local Payload Execution - Shellcode_files/template.css 583 Bytes
  • Maldev Modules/28.Process Injection - DLL Injection_files/template.css 583 Bytes
  • Maldev Modules/29.Process Injection - Shellcode Injection_files/template.css 583 Bytes
  • Maldev Modules/30.Payload Staging - Web Server_files/template.css 583 Bytes
  • Maldev Modules/31.Payload Staging - Windows Registry_files/template.css 583 Bytes
  • Maldev Modules/32.Malware Binary Signing_files/template.css 583 Bytes
  • Maldev Modules/33.Process Enumeration - EnumProcesses_files/template.css 583 Bytes
  • Maldev Modules/34.Process Enumeration - NtQuerySystemInformation_files/template.css 583 Bytes
  • Maldev Modules/35.Thread Hijacking - Local Thread Creation_files/template.css 583 Bytes
  • Maldev Modules/36.Thread Hijacking - Remote Thread Creation_files/template.css 583 Bytes
  • Maldev Modules/37.Thread Hijacking - Local Thread Enumeration_files/template.css 583 Bytes
  • Maldev Modules/38.Thread Hijacking - Remote Thread Enumeration_files/template.css 583 Bytes
  • Maldev Modules/39.APC Injection_files/template.css 583 Bytes
  • Maldev Modules/40.Early Bird APC Injection_files/template.css 583 Bytes
  • Maldev Modules/41.Callback Code Execution_files/template.css 583 Bytes
  • Maldev Modules/42.Local Mapping Injection_files/template.css 583 Bytes
  • Maldev Modules/43.Remote Mapping Injection_files/template.css 583 Bytes
  • Maldev Modules/44.Local Function Stomping Injection_files/template.css 583 Bytes
  • Maldev Modules/45.Remote Function Stomping Injection_files/template.css 583 Bytes
  • Maldev Modules/46.Payload Execution Control_files/template.css 583 Bytes
  • Maldev Modules/47.Spoofing PPID_files/template.css 583 Bytes
  • Maldev Modules/48.Process Argument Spoofing (1)_files/template.css 583 Bytes
  • Maldev Modules/49.Process Argument Spoofing (2)_files/template.css 583 Bytes
  • Maldev Modules/50.Parsing PE Headers_files/template.css 583 Bytes
  • Maldev Modules/51.String Hashing_files/template.css 583 Bytes
  • Maldev Modules/52.IAT Hiding & Obfuscation - Introduction_files/template.css 583 Bytes
  • Maldev Modules/53.IAT Hiding & Obfuscation - Custom GetProcAddress_files/template.css 583 Bytes
  • Maldev Modules/54.IAT Hiding & Obfuscation - Custom GetModuleHandle_files/template.css 583 Bytes
  • Maldev Modules/55.IAT Hiding & Obfuscation - API Hashing_files/template.css 583 Bytes
  • Maldev Modules/56.IAT Hiding & Obfuscation - Custom Pseudo Handles_files/template.css 583 Bytes
  • Maldev Modules/57.IAT Hiding & Obfuscation - Compile Time API Hashing_files/template.css 583 Bytes
  • Maldev Modules/58.API Hooking - Introduction_files/template.css 583 Bytes
  • Maldev Modules/59.API Hooking - Detours Library_files/template.css 583 Bytes
  • Maldev Modules/60.API Hooking - Minhook Library_files/template.css 583 Bytes
  • Maldev Modules/61.API Hooking - Custom Code_files/template.css 583 Bytes
  • Maldev Modules/62.API Hooking - Using Windows APIs_files/template.css 583 Bytes
  • Maldev Modules/63.Syscalls - Introduction_files/template.css 583 Bytes
  • Maldev Modules/64.Syscalls - Userland Hooking_files/template.css 583 Bytes
  • Maldev Modules/65.Syscalls - SysWhispers_files/template.css 583 Bytes
  • Maldev Modules/66.Syscalls - Hell's Gate_files/template.css 583 Bytes
  • Maldev Modules/67.Syscalls - Reimplementing Classic Injection_files/template.css 583 Bytes
  • Maldev Modules/68.Syscalls - Reimplementing Mapping Injection_files/template.css 583 Bytes
  • Maldev Modules/69.Syscalls - Reimplementing APC Injection_files/template.css 583 Bytes
  • Maldev Modules/70.Anti-Analysis - Introduction_files/template.css 583 Bytes
  • Maldev Modules/71.Anti-Debugging - Multiple Techniques_files/template.css 583 Bytes
  • Maldev Modules/72.Anti-Debugging - Self-Deletion_files/template.css 583 Bytes
  • Maldev Modules/73.Anti-Virtual Environments - Multiple Techniques_files/template.css 583 Bytes
  • Maldev Modules/74.Anti-Virtual Environments - Multiple Delay Execution Techniques_files/template.css 583 Bytes
  • Maldev Modules/75.Anti-Virtual Environments - API Hammering_files/template.css 583 Bytes
  • Maldev Modules/76.Binary Entropy Reduction_files/template.css 583 Bytes
  • Maldev Modules/77.Brute Force Decryption_files/template.css 583 Bytes
  • Maldev Modules/78.MalDev Academy Tool - KeyGuard_files/template.css 583 Bytes
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/template.css 583 Bytes
  • Maldev Modules/80.IAT Camouflage_files/template.css 583 Bytes
  • Maldev Modules/81.Bypassing AVs_files/template.css 583 Bytes
  • Maldev Modules/82.Introduction To EDRs_files/template.css 583 Bytes
  • Maldev Modules/83.NTDLL Unhooking - Introduction_files/template.css 583 Bytes
  • Maldev Modules/84.NTDLL Unhooking - From Disk_files/template.css 583 Bytes
  • Maldev Modules/85.NTDLL Unhooking - From KnownDlls Directory_files/template.css 583 Bytes
  • Maldev Modules/86.NTDLL Unhooking - From a Suspended Process_files/template.css 583 Bytes
  • Maldev Modules/87.NTDLL Unhooking - From a Web Server_files/template.css 583 Bytes
  • Maldev Modules/88.Updating Hell's Gate_files/template.css 583 Bytes
  • Maldev Modules/89.Indirect Syscalls - HellsHall_files/template.css 583 Bytes
  • Maldev Modules/90.Block DLL Policy_files/template.css 583 Bytes
  • Maldev Modules/91.Diving Into NtCreateUserProcess_files/template.css 583 Bytes
  • Maldev Modules/Modules_files/template.css 583 Bytes
  • MalDev/Challenges/07.txt 529 Bytes
  • Maldev Modules/1.Welcome Module_files/objectives.svg 501 Bytes
  • Maldev Modules/2.Introduction To Malware Development_files/objectives.svg 501 Bytes
  • Maldev Modules/3.Required Tools_files/objectives.svg 501 Bytes
  • Maldev Modules/4.Coding Basics_files/objectives.svg 501 Bytes
  • Maldev Modules/5.Windows Architecture_files/objectives.svg 501 Bytes
  • Maldev Modules/6.Windows Memory Management_files/objectives.svg 501 Bytes
  • Maldev Modules/7.Introduction To The Windows API_files/objectives.svg 501 Bytes
  • Maldev Modules/8.Portable Executable Format_files/objectives.svg 501 Bytes
  • Maldev Modules/9.Dynamic-Link Library_files/objectives.svg 501 Bytes
  • Maldev Modules/10.Detection Mechanisms_files/objectives.svg 501 Bytes
  • Maldev Modules/11.Windows Processes_files/objectives.svg 501 Bytes
  • Maldev Modules/12.Undocumented Structures_files/objectives.svg 501 Bytes
  • Maldev Modules/13.Payload Placement - .data & .rdata Sections_files/objectives.svg 501 Bytes
  • Maldev Modules/14.Payload Placement - .text Section_files/objectives.svg 501 Bytes
  • Maldev Modules/15.Payload Placement - .rsrc Section_files/objectives.svg 501 Bytes
  • Maldev Modules/16.Introduction To Payload Encryption_files/objectives.svg 501 Bytes
  • Maldev Modules/17.Payload Encryption - XOR_files/objectives.svg 501 Bytes
  • Maldev Modules/18.Payload Encryption - RC4_files/objectives.svg 501 Bytes
  • Maldev Modules/19.Payload Encryption - AES Encryption_files/objectives.svg 501 Bytes
  • Maldev Modules/20.Evading Microsoft Defender Static Analysis_files/objectives.svg 501 Bytes
  • Maldev Modules/21.Payload Obfuscation - IPv4_IPv6Fuscation_files/objectives.svg 501 Bytes
  • Maldev Modules/22.Payload Obfuscation - MACFucscation_files/objectives.svg 501 Bytes
  • Maldev Modules/23.Payload Obfuscation - UUIDFuscation_files/objectives.svg 501 Bytes
  • Maldev Modules/24.Maldev Academy Tool - HellShell_files/objectives.svg 501 Bytes
  • Maldev Modules/25.Maldev Academy Tool - MiniShell_files/objectives.svg 501 Bytes
  • Maldev Modules/26.Local Payload Execution - DLL_files/objectives.svg 501 Bytes
  • Maldev Modules/27.Local Payload Execution - Shellcode_files/objectives.svg 501 Bytes
  • Maldev Modules/28.Process Injection - DLL Injection_files/objectives.svg 501 Bytes
  • Maldev Modules/29.Process Injection - Shellcode Injection_files/objectives.svg 501 Bytes
  • Maldev Modules/30.Payload Staging - Web Server_files/objectives.svg 501 Bytes
  • Maldev Modules/31.Payload Staging - Windows Registry_files/objectives.svg 501 Bytes
  • Maldev Modules/32.Malware Binary Signing_files/objectives.svg 501 Bytes
  • Maldev Modules/33.Process Enumeration - EnumProcesses_files/objectives.svg 501 Bytes
  • Maldev Modules/34.Process Enumeration - NtQuerySystemInformation_files/objectives.svg 501 Bytes
  • Maldev Modules/35.Thread Hijacking - Local Thread Creation_files/objectives.svg 501 Bytes
  • Maldev Modules/36.Thread Hijacking - Remote Thread Creation_files/objectives.svg 501 Bytes
  • Maldev Modules/37.Thread Hijacking - Local Thread Enumeration_files/objectives.svg 501 Bytes
  • Maldev Modules/38.Thread Hijacking - Remote Thread Enumeration_files/objectives.svg 501 Bytes
  • Maldev Modules/39.APC Injection_files/objectives.svg 501 Bytes
  • Maldev Modules/40.Early Bird APC Injection_files/objectives.svg 501 Bytes
  • Maldev Modules/41.Callback Code Execution_files/objectives.svg 501 Bytes
  • Maldev Modules/42.Local Mapping Injection_files/objectives.svg 501 Bytes
  • Maldev Modules/43.Remote Mapping Injection_files/objectives.svg 501 Bytes
  • Maldev Modules/44.Local Function Stomping Injection_files/objectives.svg 501 Bytes
  • Maldev Modules/45.Remote Function Stomping Injection_files/objectives.svg 501 Bytes
  • Maldev Modules/46.Payload Execution Control_files/objectives.svg 501 Bytes
  • Maldev Modules/47.Spoofing PPID_files/objectives.svg 501 Bytes
  • Maldev Modules/48.Process Argument Spoofing (1)_files/objectives.svg 501 Bytes
  • Maldev Modules/49.Process Argument Spoofing (2)_files/objectives.svg 501 Bytes
  • Maldev Modules/50.Parsing PE Headers_files/objectives.svg 501 Bytes
  • Maldev Modules/51.String Hashing_files/objectives.svg 501 Bytes
  • Maldev Modules/52.IAT Hiding & Obfuscation - Introduction_files/objectives.svg 501 Bytes
  • Maldev Modules/53.IAT Hiding & Obfuscation - Custom GetProcAddress_files/objectives.svg 501 Bytes
  • Maldev Modules/54.IAT Hiding & Obfuscation - Custom GetModuleHandle_files/objectives.svg 501 Bytes
  • Maldev Modules/55.IAT Hiding & Obfuscation - API Hashing_files/objectives.svg 501 Bytes
  • Maldev Modules/56.IAT Hiding & Obfuscation - Custom Pseudo Handles_files/objectives.svg 501 Bytes
  • Maldev Modules/57.IAT Hiding & Obfuscation - Compile Time API Hashing_files/objectives.svg 501 Bytes
  • Maldev Modules/58.API Hooking - Introduction_files/objectives.svg 501 Bytes
  • Maldev Modules/59.API Hooking - Detours Library_files/objectives.svg 501 Bytes
  • Maldev Modules/60.API Hooking - Minhook Library_files/objectives.svg 501 Bytes
  • Maldev Modules/61.API Hooking - Custom Code_files/objectives.svg 501 Bytes
  • Maldev Modules/62.API Hooking - Using Windows APIs_files/objectives.svg 501 Bytes
  • Maldev Modules/63.Syscalls - Introduction_files/objectives.svg 501 Bytes
  • Maldev Modules/64.Syscalls - Userland Hooking_files/objectives.svg 501 Bytes
  • Maldev Modules/65.Syscalls - SysWhispers_files/objectives.svg 501 Bytes
  • Maldev Modules/66.Syscalls - Hell's Gate_files/objectives.svg 501 Bytes
  • Maldev Modules/67.Syscalls - Reimplementing Classic Injection_files/objectives.svg 501 Bytes
  • Maldev Modules/68.Syscalls - Reimplementing Mapping Injection_files/objectives.svg 501 Bytes
  • Maldev Modules/69.Syscalls - Reimplementing APC Injection_files/objectives.svg 501 Bytes
  • Maldev Modules/70.Anti-Analysis - Introduction_files/objectives.svg 501 Bytes
  • Maldev Modules/71.Anti-Debugging - Multiple Techniques_files/objectives.svg 501 Bytes
  • Maldev Modules/72.Anti-Debugging - Self-Deletion_files/objectives.svg 501 Bytes
  • Maldev Modules/73.Anti-Virtual Environments - Multiple Techniques_files/objectives.svg 501 Bytes
  • Maldev Modules/74.Anti-Virtual Environments - Multiple Delay Execution Techniques_files/objectives.svg 501 Bytes
  • Maldev Modules/75.Anti-Virtual Environments - API Hammering_files/objectives.svg 501 Bytes
  • Maldev Modules/76.Binary Entropy Reduction_files/objectives.svg 501 Bytes
  • Maldev Modules/77.Brute Force Decryption_files/objectives.svg 501 Bytes
  • Maldev Modules/78.MalDev Academy Tool - KeyGuard_files/objectives.svg 501 Bytes
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/objectives.svg 501 Bytes
  • Maldev Modules/80.IAT Camouflage_files/objectives.svg 501 Bytes
  • Maldev Modules/81.Bypassing AVs_files/objectives.svg 501 Bytes
  • Maldev Modules/82.Introduction To EDRs_files/objectives.svg 501 Bytes
  • Maldev Modules/83.NTDLL Unhooking - Introduction_files/objectives.svg 501 Bytes
  • Maldev Modules/84.NTDLL Unhooking - From Disk_files/objectives.svg 501 Bytes
  • Maldev Modules/85.NTDLL Unhooking - From KnownDlls Directory_files/objectives.svg 501 Bytes
  • Maldev Modules/86.NTDLL Unhooking - From a Suspended Process_files/objectives.svg 501 Bytes
  • Maldev Modules/87.NTDLL Unhooking - From a Web Server_files/objectives.svg 501 Bytes
  • Maldev Modules/88.Updating Hell's Gate_files/objectives.svg 501 Bytes
  • Maldev Modules/89.Indirect Syscalls - HellsHall_files/objectives.svg 501 Bytes
  • Maldev Modules/90.Block DLL Policy_files/objectives.svg 501 Bytes
  • Maldev Modules/91.Diving Into NtCreateUserProcess_files/objectives.svg 501 Bytes
  • MalDev/Challenges/11.txt 498 Bytes
  • MalDev/Challenges/18.txt 495 Bytes
  • Maldev Modules/Modules_files/module.svg 473 Bytes
  • Maldev Modules/Modules_files/modulemenu.js 462 Bytes
  • Maldev Modules/1.Welcome Module_files/ide.svg 437 Bytes
  • Maldev Modules/2.Introduction To Malware Development_files/ide.svg 437 Bytes
  • Maldev Modules/3.Required Tools_files/ide.svg 437 Bytes
  • Maldev Modules/4.Coding Basics_files/ide.svg 437 Bytes
  • Maldev Modules/5.Windows Architecture_files/ide.svg 437 Bytes
  • Maldev Modules/6.Windows Memory Management_files/ide.svg 437 Bytes
  • Maldev Modules/7.Introduction To The Windows API_files/ide.svg 437 Bytes
  • Maldev Modules/8.Portable Executable Format_files/ide.svg 437 Bytes
  • Maldev Modules/9.Dynamic-Link Library_files/ide.svg 437 Bytes
  • Maldev Modules/10.Detection Mechanisms_files/ide.svg 437 Bytes
  • Maldev Modules/11.Windows Processes_files/ide.svg 437 Bytes
  • Maldev Modules/12.Undocumented Structures_files/ide.svg 437 Bytes
  • Maldev Modules/13.Payload Placement - .data & .rdata Sections_files/ide.svg 437 Bytes
  • Maldev Modules/14.Payload Placement - .text Section_files/ide.svg 437 Bytes
  • Maldev Modules/15.Payload Placement - .rsrc Section_files/ide.svg 437 Bytes
  • Maldev Modules/16.Introduction To Payload Encryption_files/ide.svg 437 Bytes
  • Maldev Modules/17.Payload Encryption - XOR_files/ide.svg 437 Bytes
  • Maldev Modules/18.Payload Encryption - RC4_files/ide.svg 437 Bytes
  • Maldev Modules/19.Payload Encryption - AES Encryption_files/ide.svg 437 Bytes
  • Maldev Modules/20.Evading Microsoft Defender Static Analysis_files/ide.svg 437 Bytes
  • Maldev Modules/21.Payload Obfuscation - IPv4_IPv6Fuscation_files/ide.svg 437 Bytes
  • Maldev Modules/22.Payload Obfuscation - MACFucscation_files/ide.svg 437 Bytes
  • Maldev Modules/23.Payload Obfuscation - UUIDFuscation_files/ide.svg 437 Bytes
  • Maldev Modules/24.Maldev Academy Tool - HellShell_files/ide.svg 437 Bytes
  • Maldev Modules/25.Maldev Academy Tool - MiniShell_files/ide.svg 437 Bytes
  • Maldev Modules/26.Local Payload Execution - DLL_files/ide.svg 437 Bytes
  • Maldev Modules/27.Local Payload Execution - Shellcode_files/ide.svg 437 Bytes
  • Maldev Modules/28.Process Injection - DLL Injection_files/ide.svg 437 Bytes
  • Maldev Modules/29.Process Injection - Shellcode Injection_files/ide.svg 437 Bytes
  • Maldev Modules/30.Payload Staging - Web Server_files/ide.svg 437 Bytes
  • Maldev Modules/31.Payload Staging - Windows Registry_files/ide.svg 437 Bytes
  • Maldev Modules/32.Malware Binary Signing_files/ide.svg 437 Bytes
  • Maldev Modules/33.Process Enumeration - EnumProcesses_files/ide.svg 437 Bytes
  • Maldev Modules/34.Process Enumeration - NtQuerySystemInformation_files/ide.svg 437 Bytes
  • Maldev Modules/35.Thread Hijacking - Local Thread Creation_files/ide.svg 437 Bytes
  • Maldev Modules/36.Thread Hijacking - Remote Thread Creation_files/ide.svg 437 Bytes
  • Maldev Modules/37.Thread Hijacking - Local Thread Enumeration_files/ide.svg 437 Bytes
  • Maldev Modules/38.Thread Hijacking - Remote Thread Enumeration_files/ide.svg 437 Bytes
  • Maldev Modules/39.APC Injection_files/ide.svg 437 Bytes
  • Maldev Modules/40.Early Bird APC Injection_files/ide.svg 437 Bytes
  • Maldev Modules/41.Callback Code Execution_files/ide.svg 437 Bytes
  • Maldev Modules/42.Local Mapping Injection_files/ide.svg 437 Bytes
  • Maldev Modules/43.Remote Mapping Injection_files/ide.svg 437 Bytes
  • Maldev Modules/44.Local Function Stomping Injection_files/ide.svg 437 Bytes
  • Maldev Modules/45.Remote Function Stomping Injection_files/ide.svg 437 Bytes
  • Maldev Modules/46.Payload Execution Control_files/ide.svg 437 Bytes
  • Maldev Modules/47.Spoofing PPID_files/ide.svg 437 Bytes
  • Maldev Modules/48.Process Argument Spoofing (1)_files/ide.svg 437 Bytes
  • Maldev Modules/49.Process Argument Spoofing (2)_files/ide.svg 437 Bytes
  • Maldev Modules/50.Parsing PE Headers_files/ide.svg 437 Bytes
  • Maldev Modules/51.String Hashing_files/ide.svg 437 Bytes
  • Maldev Modules/52.IAT Hiding & Obfuscation - Introduction_files/ide.svg 437 Bytes
  • Maldev Modules/53.IAT Hiding & Obfuscation - Custom GetProcAddress_files/ide.svg 437 Bytes
  • Maldev Modules/54.IAT Hiding & Obfuscation - Custom GetModuleHandle_files/ide.svg 437 Bytes
  • Maldev Modules/55.IAT Hiding & Obfuscation - API Hashing_files/ide.svg 437 Bytes
  • Maldev Modules/56.IAT Hiding & Obfuscation - Custom Pseudo Handles_files/ide.svg 437 Bytes
  • Maldev Modules/57.IAT Hiding & Obfuscation - Compile Time API Hashing_files/ide.svg 437 Bytes
  • Maldev Modules/58.API Hooking - Introduction_files/ide.svg 437 Bytes
  • Maldev Modules/59.API Hooking - Detours Library_files/ide.svg 437 Bytes
  • Maldev Modules/60.API Hooking - Minhook Library_files/ide.svg 437 Bytes
  • Maldev Modules/61.API Hooking - Custom Code_files/ide.svg 437 Bytes
  • Maldev Modules/62.API Hooking - Using Windows APIs_files/ide.svg 437 Bytes
  • Maldev Modules/63.Syscalls - Introduction_files/ide.svg 437 Bytes
  • Maldev Modules/64.Syscalls - Userland Hooking_files/ide.svg 437 Bytes
  • Maldev Modules/65.Syscalls - SysWhispers_files/ide.svg 437 Bytes
  • Maldev Modules/66.Syscalls - Hell's Gate_files/ide.svg 437 Bytes
  • Maldev Modules/67.Syscalls - Reimplementing Classic Injection_files/ide.svg 437 Bytes
  • Maldev Modules/68.Syscalls - Reimplementing Mapping Injection_files/ide.svg 437 Bytes
  • Maldev Modules/69.Syscalls - Reimplementing APC Injection_files/ide.svg 437 Bytes
  • Maldev Modules/70.Anti-Analysis - Introduction_files/ide.svg 437 Bytes
  • Maldev Modules/71.Anti-Debugging - Multiple Techniques_files/ide.svg 437 Bytes
  • Maldev Modules/72.Anti-Debugging - Self-Deletion_files/ide.svg 437 Bytes
  • Maldev Modules/73.Anti-Virtual Environments - Multiple Techniques_files/ide.svg 437 Bytes
  • Maldev Modules/74.Anti-Virtual Environments - Multiple Delay Execution Techniques_files/ide.svg 437 Bytes
  • Maldev Modules/75.Anti-Virtual Environments - API Hammering_files/ide.svg 437 Bytes
  • Maldev Modules/76.Binary Entropy Reduction_files/ide.svg 437 Bytes
  • Maldev Modules/77.Brute Force Decryption_files/ide.svg 437 Bytes
  • Maldev Modules/78.MalDev Academy Tool - KeyGuard_files/ide.svg 437 Bytes
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/ide.svg 437 Bytes
  • Maldev Modules/80.IAT Camouflage_files/ide.svg 437 Bytes
  • Maldev Modules/81.Bypassing AVs_files/ide.svg 437 Bytes
  • Maldev Modules/82.Introduction To EDRs_files/ide.svg 437 Bytes
  • Maldev Modules/83.NTDLL Unhooking - Introduction_files/ide.svg 437 Bytes
  • Maldev Modules/84.NTDLL Unhooking - From Disk_files/ide.svg 437 Bytes
  • Maldev Modules/85.NTDLL Unhooking - From KnownDlls Directory_files/ide.svg 437 Bytes
  • Maldev Modules/86.NTDLL Unhooking - From a Suspended Process_files/ide.svg 437 Bytes
  • Maldev Modules/87.NTDLL Unhooking - From a Web Server_files/ide.svg 437 Bytes
  • Maldev Modules/88.Updating Hell's Gate_files/ide.svg 437 Bytes
  • Maldev Modules/89.Indirect Syscalls - HellsHall_files/ide.svg 437 Bytes
  • Maldev Modules/90.Block DLL Policy_files/ide.svg 437 Bytes
  • Maldev Modules/91.Diving Into NtCreateUserProcess_files/ide.svg 437 Bytes
  • MalDev/Challenges/12.txt 417 Bytes
  • MalDev/Challenges/10.txt 270 Bytes
  • MalDev/Challenges/03.txt 253 Bytes
  • Maldev Modules/1.Welcome Module_files/navbar.js 120 Bytes
  • Maldev Modules/2.Introduction To Malware Development_files/navbar.js 120 Bytes
  • Maldev Modules/3.Required Tools_files/navbar.js 120 Bytes
  • Maldev Modules/4.Coding Basics_files/navbar.js 120 Bytes
  • Maldev Modules/5.Windows Architecture_files/navbar.js 120 Bytes
  • Maldev Modules/6.Windows Memory Management_files/navbar.js 120 Bytes
  • Maldev Modules/7.Introduction To The Windows API_files/navbar.js 120 Bytes
  • Maldev Modules/8.Portable Executable Format_files/navbar.js 120 Bytes
  • Maldev Modules/9.Dynamic-Link Library_files/navbar.js 120 Bytes
  • Maldev Modules/10.Detection Mechanisms_files/navbar.js 120 Bytes
  • Maldev Modules/11.Windows Processes_files/navbar.js 120 Bytes
  • Maldev Modules/12.Undocumented Structures_files/navbar.js 120 Bytes
  • Maldev Modules/13.Payload Placement - .data & .rdata Sections_files/navbar.js 120 Bytes
  • Maldev Modules/14.Payload Placement - .text Section_files/navbar.js 120 Bytes
  • Maldev Modules/15.Payload Placement - .rsrc Section_files/navbar.js 120 Bytes
  • Maldev Modules/16.Introduction To Payload Encryption_files/navbar.js 120 Bytes
  • Maldev Modules/17.Payload Encryption - XOR_files/navbar.js 120 Bytes
  • Maldev Modules/18.Payload Encryption - RC4_files/navbar.js 120 Bytes
  • Maldev Modules/19.Payload Encryption - AES Encryption_files/navbar.js 120 Bytes
  • Maldev Modules/20.Evading Microsoft Defender Static Analysis_files/navbar.js 120 Bytes
  • Maldev Modules/21.Payload Obfuscation - IPv4_IPv6Fuscation_files/navbar.js 120 Bytes
  • Maldev Modules/22.Payload Obfuscation - MACFucscation_files/navbar.js 120 Bytes
  • Maldev Modules/23.Payload Obfuscation - UUIDFuscation_files/navbar.js 120 Bytes
  • Maldev Modules/24.Maldev Academy Tool - HellShell_files/navbar.js 120 Bytes
  • Maldev Modules/25.Maldev Academy Tool - MiniShell_files/navbar.js 120 Bytes
  • Maldev Modules/26.Local Payload Execution - DLL_files/navbar.js 120 Bytes
  • Maldev Modules/27.Local Payload Execution - Shellcode_files/navbar.js 120 Bytes
  • Maldev Modules/28.Process Injection - DLL Injection_files/navbar.js 120 Bytes
  • Maldev Modules/29.Process Injection - Shellcode Injection_files/navbar.js 120 Bytes
  • Maldev Modules/30.Payload Staging - Web Server_files/navbar.js 120 Bytes
  • Maldev Modules/31.Payload Staging - Windows Registry_files/navbar.js 120 Bytes
  • Maldev Modules/32.Malware Binary Signing_files/navbar.js 120 Bytes
  • Maldev Modules/33.Process Enumeration - EnumProcesses_files/navbar.js 120 Bytes
  • Maldev Modules/34.Process Enumeration - NtQuerySystemInformation_files/navbar.js 120 Bytes
  • Maldev Modules/35.Thread Hijacking - Local Thread Creation_files/navbar.js 120 Bytes
  • Maldev Modules/36.Thread Hijacking - Remote Thread Creation_files/navbar.js 120 Bytes
  • Maldev Modules/37.Thread Hijacking - Local Thread Enumeration_files/navbar.js 120 Bytes
  • Maldev Modules/38.Thread Hijacking - Remote Thread Enumeration_files/navbar.js 120 Bytes
  • Maldev Modules/39.APC Injection_files/navbar.js 120 Bytes
  • Maldev Modules/40.Early Bird APC Injection_files/navbar.js 120 Bytes
  • Maldev Modules/41.Callback Code Execution_files/navbar.js 120 Bytes
  • Maldev Modules/42.Local Mapping Injection_files/navbar.js 120 Bytes
  • Maldev Modules/43.Remote Mapping Injection_files/navbar.js 120 Bytes
  • Maldev Modules/44.Local Function Stomping Injection_files/navbar.js 120 Bytes
  • Maldev Modules/45.Remote Function Stomping Injection_files/navbar.js 120 Bytes
  • Maldev Modules/46.Payload Execution Control_files/navbar.js 120 Bytes
  • Maldev Modules/47.Spoofing PPID_files/navbar.js 120 Bytes
  • Maldev Modules/48.Process Argument Spoofing (1)_files/navbar.js 120 Bytes
  • Maldev Modules/49.Process Argument Spoofing (2)_files/navbar.js 120 Bytes
  • Maldev Modules/50.Parsing PE Headers_files/navbar.js 120 Bytes
  • Maldev Modules/51.String Hashing_files/navbar.js 120 Bytes
  • Maldev Modules/52.IAT Hiding & Obfuscation - Introduction_files/navbar.js 120 Bytes
  • Maldev Modules/53.IAT Hiding & Obfuscation - Custom GetProcAddress_files/navbar.js 120 Bytes
  • Maldev Modules/54.IAT Hiding & Obfuscation - Custom GetModuleHandle_files/navbar.js 120 Bytes
  • Maldev Modules/55.IAT Hiding & Obfuscation - API Hashing_files/navbar.js 120 Bytes
  • Maldev Modules/56.IAT Hiding & Obfuscation - Custom Pseudo Handles_files/navbar.js 120 Bytes
  • Maldev Modules/57.IAT Hiding & Obfuscation - Compile Time API Hashing_files/navbar.js 120 Bytes
  • Maldev Modules/58.API Hooking - Introduction_files/navbar.js 120 Bytes
  • Maldev Modules/59.API Hooking - Detours Library_files/navbar.js 120 Bytes
  • Maldev Modules/60.API Hooking - Minhook Library_files/navbar.js 120 Bytes
  • Maldev Modules/61.API Hooking - Custom Code_files/navbar.js 120 Bytes
  • Maldev Modules/62.API Hooking - Using Windows APIs_files/navbar.js 120 Bytes
  • Maldev Modules/63.Syscalls - Introduction_files/navbar.js 120 Bytes
  • Maldev Modules/64.Syscalls - Userland Hooking_files/navbar.js 120 Bytes
  • Maldev Modules/65.Syscalls - SysWhispers_files/navbar.js 120 Bytes
  • Maldev Modules/66.Syscalls - Hell's Gate_files/navbar.js 120 Bytes
  • Maldev Modules/67.Syscalls - Reimplementing Classic Injection_files/navbar.js 120 Bytes
  • Maldev Modules/68.Syscalls - Reimplementing Mapping Injection_files/navbar.js 120 Bytes
  • Maldev Modules/69.Syscalls - Reimplementing APC Injection_files/navbar.js 120 Bytes
  • Maldev Modules/70.Anti-Analysis - Introduction_files/navbar.js 120 Bytes
  • Maldev Modules/71.Anti-Debugging - Multiple Techniques_files/navbar.js 120 Bytes
  • Maldev Modules/72.Anti-Debugging - Self-Deletion_files/navbar.js 120 Bytes
  • Maldev Modules/73.Anti-Virtual Environments - Multiple Techniques_files/navbar.js 120 Bytes
  • Maldev Modules/74.Anti-Virtual Environments - Multiple Delay Execution Techniques_files/navbar.js 120 Bytes
  • Maldev Modules/75.Anti-Virtual Environments - API Hammering_files/navbar.js 120 Bytes
  • Maldev Modules/76.Binary Entropy Reduction_files/navbar.js 120 Bytes
  • Maldev Modules/77.Brute Force Decryption_files/navbar.js 120 Bytes
  • Maldev Modules/78.MalDev Academy Tool - KeyGuard_files/navbar.js 120 Bytes
  • Maldev Modules/79.CRT Library Removal & Malware Compiling_files/navbar.js 120 Bytes
  • Maldev Modules/80.IAT Camouflage_files/navbar.js 120 Bytes
  • Maldev Modules/81.Bypassing AVs_files/navbar.js 120 Bytes
  • Maldev Modules/82.Introduction To EDRs_files/navbar.js 120 Bytes
  • Maldev Modules/83.NTDLL Unhooking - Introduction_files/navbar.js 120 Bytes
  • Maldev Modules/84.NTDLL Unhooking - From Disk_files/navbar.js 120 Bytes
  • Maldev Modules/85.NTDLL Unhooking - From KnownDlls Directory_files/navbar.js 120 Bytes
  • Maldev Modules/86.NTDLL Unhooking - From a Suspended Process_files/navbar.js 120 Bytes
  • Maldev Modules/87.NTDLL Unhooking - From a Web Server_files/navbar.js 120 Bytes
  • Maldev Modules/88.Updating Hell's Gate_files/navbar.js 120 Bytes
  • Maldev Modules/89.Indirect Syscalls - HellsHall_files/navbar.js 120 Bytes
  • Maldev Modules/90.Block DLL Policy_files/navbar.js 120 Bytes
  • Maldev Modules/91.Diving Into NtCreateUserProcess_files/navbar.js 120 Bytes
  • Maldev Modules/Modules_files/navbar.js 120 Bytes

随机展示

相关说明

本站不存储任何资源内容,只收集BT种子元数据(例如文件名和文件大小)和磁力链接(BT种子标识符),并提供查询服务,是一个完全合法的搜索引擎系统。 网站不提供种子下载服务,用户可以通过第三方链接或磁力链接获取到相关的种子资源。本站也不对BT种子真实性及合法性负责,请用户注意甄别!