05-15-2023, 03:00 AM
Where can I find some useful information about malware/spyware and how to write it?
var unreadAlerts = '1';
How to write malware/spyware |
05-15-2023, 03:00 AM Where can I find some useful information about malware/spyware and how to write it? 05-15-2023, 03:36 AM 05-16-2023, 03:05 AM mrimad Wrote: https://portswigger.net/web-security/cro...exploiting That requires the use of Burp Suite. I wanna use C++ or some other language to create a script/program 05-16-2023, 09:46 PM (This post was last modified: 05-16-2023, 09:47 PM by nascar. Edit Reason: wrong url ) vx-underground.org 05-17-2023, 03:19 AM 05-17-2023, 03:36 AM if you need basics check it out: 0xpat.github.io 06-12-2023, 02:02 PM (This post was last modified: 06-12-2023, 02:12 PM by DerRoteMilan.) You do have my xmpp (derrotemilan@xmpp.is) I have been in the scene before and therefore am somewhat familiar with malware development. Even though I need to catch up on some of the latest developments in malware techniques I think I can answer many questions you might have. That out of the way, I find vx-underground.org to be an insanely good resource for malware development related things. If you don't know C and/or C++ already, these would still be my top picks to write malware in. There are many resources for these languages and they allow you to write at decent speed while still offering enough low level control to implement very powerful anti reversing and debugging measures. I see newer high profile malware also being written in Rust, C# or Python. Also many use powershell components for windows malware. I have to do more research. Obviously whatever works, works and you should not shy away to switch tools if some tool is better suited than others. However, I can only see Rust as an alternative to C or C++. But there are simply not as many resources on Rust than there are for C and C++. Also Rust is very restrictive and C and C++ allow you to be more creative in your malware coding without too much convincing of the compiler. Therefore I strongly believe that C and C++ are still your best choices. However, you should also know the assembly language and the operating system you are using well to make effective use of the freedom C and C++ provide. Since 0xpat's tutorial series got linked here, I will also provide some further "getting started links" as well as some other interesting links: - virus.enemy.org/virus-writing-HOWTO/_html/ - www.guitmz.com - github.com/guitmz/midrashim/blob/main/Linux.Midrashim.asm - compilepeace.medium.com/malware-engineering-part-0x1-that-magical-elf-5be3556ecb2b - www.blackhillsinfosec.com/bypass-anti-virus-run-mimikatz/ - iwantmore.pizza/posts/PEzor.html - blog.christophetd.fr/hiding-windows-api-imports-with-a-customer-loader/ - bytepointer.com/resources/index.htm - www.nirsoft.net/code_samples.html - vxug.fakedoma.in/papers.html - github.com/oddcod3/Phantom-Evasion - anti-debug.checkpoint.com/ - evasions.checkpoint.com/ - www.joachim-bauch.de/tutorials/loading-a-dll-from-memory/ - h0mbre.github.io/Learn-C-By-Creating-A-Rootkit/ - undocumented.ntinternals.net/ You should also check out game hacking resources, they are much more public but game hackers face almost the identical challenges that malware developers do. They hide from anti cheats, malware devs from AVs. They are almost the same thing. I didn't check them out yet but the courses by sector7 on malware development have been leaked a while ago. I know that some folks really liked them. At the end malware development is really just software development with some unique challenges. If you are a really good developer, you are likely also a really good malware developer. And if not, you can become one really quickly if you have the development skills already. So your absolute first step should be to become a good C or C++ developer. Read the Standard, practice, learn the tooling like debuggers and build systems. After that learn your operating system inside and out and also pick up the assembly language for your processor. Now you are ready to write some basic malware and implement some anti reversing techniques. Start basic and add more and more malware specific "solutions" and features. Also don't shy away from studying source code of older malware. For example there is a complete re-implementation of the sub7 RAT on github. There are also mutation engines and loaders, crypters, binders etc. everything open to be studied on github. But please check out the author of the malware first! Many people really don't know what they are doing and still upload malware related code to github. |
« Next Oldest | Next Newest » |
Possibly Related Threads… | |||||
Thread | Author | Replies | Views | Last Post | |
how to make anonymous windows malware? | jcole2244 | 0 | 164 | 04-12-2023, 06:18 PM Last Post: jcole2244 |