The most insightful stories about Windows Internals - Medium

Windows Internals

Malware Analysis

Reverse Engineering

Windows Internals

Topic

·

25 Followers

·

97 Stories

Recommended stories

Sohail Saha
Using syscalls to bypass User-land EDR hooks
This post discusses direct and indirect syscalls, and showcases how to use this idea to bypass user-land EDR hooks.
4d ago
Nikhil gupta
Vulnerable Windows Driver In a Nutshell
Disclaimer:
The code and techniques provided in this blog are intended for educational purposes only. They are designed to help individuals…
6d ago
Sohail Saha
A Gentle Introduction to Syscalls in WindowsThis post introduces the concept of syscalls in Windows, and all the relevant prerequisite concepts — System services, SSDTs and SSNs.
4d ago
4d ago
Jonathan Johnson
Understanding ETW PatchingIntroduction
Apr 12
Apr 12
Nikhil gupta
Anatomy of State of the Art DebuggerDebuggers are specialized tools used by developers, security researchers, and reverse engineers to inspect the internal behavior of…
Sep 14
Sep 14

Using syscalls to bypass User-land EDR hooks

Using syscalls to bypass User-land EDR hooks

Sohail Saha

Using syscalls to bypass User-land EDR hooks

This post discusses direct and indirect syscalls, and showcases how to use this idea to bypass user-land EDR hooks.

4d ago

Vulnerable Windows Driver In a Nutshell

Vulnerable Windows Driver In a Nutshell

Nikhil gupta

Vulnerable Windows Driver In a Nutshell

Disclaimer: The code and techniques provided in this blog are intended for educational purposes only. They are designed to help individuals…

6d ago

A Gentle Introduction to Syscalls in Windows

Sohail Saha

A Gentle Introduction to Syscalls in Windows

This post introduces the concept of syscalls in Windows, and all the relevant prerequisite concepts — System services, SSDTs and SSNs.

4d ago

Understanding ETW Patching

Jonathan Johnson

Understanding ETW Patching

Introduction

Apr 12

Anatomy of State of the Art Debugger

Nikhil gupta

Anatomy of State of the Art Debugger

Debuggers are specialized tools used by developers, security researchers, and reverse engineers to inspect the internal behavior of…

Sep 14

All kill Zero Fill — Anatomy of EDR Killers

Nikhil gupta

All kill Zero Fill — Anatomy of EDR Killers

The evolution of Antivirus (AV) technologies began in the early 1980s with signature-based detection, where AVs identified malware by…

Sep 12

Anatomy of an Anti-Debugging Malware

Nikhil gupta

Anatomy of an Anti-Debugging Malware

Anti-debugging is a technique used by Malware developers to shield their malware from analysts who might attempt to analyze it or…

Aug 15

Demystifying the “SVCHOST.EXE” Process and Its Command Line Options

Nasreddine Bencherchali

Demystifying the “SVCHOST.EXE” Process and Its Command Line Options

Understanding the “svchost.exe” process and its command line options

Sep 26, 2020

See more recommended stories