var unreadAlerts = '1';
You have one unread private message from dkota titled Welcome to the Forum!

How to write malware/spyware
#1
Where can I find some useful information about malware/spyware and how to write it?
Report
#2
https://portswigger.net/web-security/cro...exploiting
Reply Quote // Report
#3
mrimad Wrote: https://portswigger.net/web-security/cro...exploiting

That requires the use of Burp Suite. I wanna use C++ or some other language to create a script/program
Reply Quote // Report
#4
vx-underground.org
Reply Quote // Report
#5
nascar Wrote: vx-underground.org

I know that website for years. It shows you the malware and diferent papers about it, but it don't explain to you the basic principles like it's a 101 HOW TO WRITE MALWARE, if u know what I mean.
Reply Quote // Report
#6
if you need basics check it out: 0xpat.github.io
Reply Quote // Report
#7
You do have my xmpp (derrotemilan@xmpp.is)
I have been in the scene before and therefore am somewhat familiar with malware development.
Even though I need to catch up on some of the latest developments in malware techniques I think
I can answer many questions you might have.

That out of the way, I find vx-underground.org to be an insanely good resource for malware development related
things.

If you don't know C and/or C++ already, these would still be my top picks to write malware in.
There are many resources for these languages and they allow you to write at decent speed while still
offering enough low level control to implement very powerful anti reversing and debugging measures.

I see newer high profile malware also being written in Rust, C# or Python. Also many use powershell components
for windows malware. I have to do more research. Obviously whatever works, works and you should not shy away to switch tools if some tool is better suited than others.
However, I can only see Rust as an alternative to C or C++.
But there are simply not as many resources on Rust than there are for C and C++.
Also Rust is very restrictive and C and C++ allow you to be more creative in your malware coding without
too much convincing of the compiler.

Therefore I strongly believe that C and C++ are still your best choices.
However, you should also know the assembly language and the operating system you are using well to make
effective use of the freedom C and C++ provide.

Since 0xpat's tutorial series got linked here, I will also provide some further "getting started links"
as well as some other interesting links:
- virus.enemy.org/virus-writing-HOWTO/_html/
- www.guitmz.com
- github.com/guitmz/midrashim/blob/main/Linux.Midrashim.asm
- compilepeace.medium.com/malware-engineering-part-0x1-that-magical-elf-5be3556ecb2b
- www.blackhillsinfosec.com/bypass-anti-virus-run-mimikatz/
- iwantmore.pizza/posts/PEzor.html
- blog.christophetd.fr/hiding-windows-api-imports-with-a-customer-loader/
- bytepointer.com/resources/index.htm
- www.nirsoft.net/code_samples.html
- vxug.fakedoma.in/papers.html
- github.com/oddcod3/Phantom-Evasion
- anti-debug.checkpoint.com/
- evasions.checkpoint.com/
- www.joachim-bauch.de/tutorials/loading-a-dll-from-memory/
- h0mbre.github.io/Learn-C-By-Creating-A-Rootkit/
- undocumented.ntinternals.net/

You should also check out game hacking resources, they are much more public
but game hackers face almost the identical challenges that malware developers do.
They hide from anti cheats, malware devs from AVs. They are almost the same thing.

I didn't check them out yet but the courses by sector7 on malware development have been leaked
a while ago. I know that some folks really liked them.

At the end malware development is really just software development with some unique challenges.
If you are a really good developer, you are likely also a really good malware developer.
And if not, you can become one really quickly if you have the development skills already.

So your absolute first step should be to become a good C or C++ developer.
Read the Standard, practice, learn the tooling like debuggers and build systems.

After that learn your operating system inside and out and also pick up the assembly
language for your processor.

Now you are ready to write some basic malware and implement some anti reversing techniques.
Start basic and add more and more malware specific "solutions" and features.

Also don't shy away from studying source code of older malware. For example there is a complete
re-implementation of the sub7 RAT on github. There are also mutation engines and loaders, crypters, binders etc.
everything open to be studied on github. But please check out the author of the malware first! Many people really don't know what they are doing and still upload malware related code to github.
Reply Quote // Report


Quick Reply
Message
Type your reply to this message here.



Possibly Related Threads…
Thread Author Replies Views Last Post
  how to make anonymous windows malware? jcole2244 0 164 04-12-2023, 06:18 PM
Last Post: jcole2244



Users browsing this thread: purely_cabbage
var thread_deleted = "0"; if(thread_deleted == "1") { $("#quick_reply_form, .new_reply_button, .thread_tools, .inline_rating").hide(); $("#moderator_options_selector option.option_mirage").attr("disabled","disabled"); }