PygrumMalware Development — Writing and Integrating An Implant with Monarch C2Monarch is a command & control framework I recently developed and released. Although the project is still in early development stages, it…Dec 14, 2023Dec 14, 2023
PygrumPlanning Your First C2 FrameworkThis post details the first steps I took in the development of my implant-independent Command and Control framework — Monarch. The project…Nov 20, 2023Nov 20, 2023
PygrumMalware Development — Developing a Custom Network ProtocolThere are cases when we want our malware to have its own way of communicating. This may be to prevent analysis from deep protocol…Sep 24, 2023Sep 24, 2023
PygrumMalware Development — Developing A Local Communication ProtocolIn my post about user-mode (UM) kernel-mode (KM) communication, I demonstrated how to communicate between user-mode and kernel-mode…Sep 11, 2023Sep 11, 2023
PygrumMalware Development — Alternative KM-UM CommunicationIn the last post, we went through how to create a simple kernel mode driver that echoes back a message it receives from a user mode…Sep 9, 2023Sep 9, 2023
PygrumMalware Development — Writing A Simple Echo Kernel DriverAn introduction to communicating with Windows kernel mode components.Aug 28, 2023Aug 28, 2023