Before we dive into the concept of DLL injection its important to know the basics, So let's start with what is a DLL? and why are they used so widely? Dynamically Linked Library or DLL is are the files written to add features to an application. DLL's contain code and data that can be used... Continue Reading →
Different Visual C/C++ calling conventions
Visual C++ provides different calling conventions based on users requirements for calling internal as well as external functions. Some of the widely used conventions areĀ __cdecl, __stdcall, __fastcall and __thiscall. We will be discussing how these calling convention differs on the basis of how the arguments are passed, how the stack is cleared after the... Continue Reading →
Summarizing Unpacking Virtualization Obfuscators by Rolf Rolles
In this article we will explain Virtualization Obfuscators, why they so popularly used by malwares, how do they differ from normal obfuscators and a step by step approach to deobfuscate them. Introduction: Nowdays almost every Malware is protected using some method and that protection has to be removed in order to even begin with advanced... Continue Reading →
Difference Between a Packer, Crypter and Protector
In this blog post we will try to explain the terms packers, crypters and protectors. Although no specific definition has been given for these as their properties might overlap in some cases and might have some exceptions. But we will try to keep it simple. A common confusion that most of those who are new... Continue Reading →
Being Malicious 