Search found 1104 matches

by rkhunter
Tue Sep 05, 2017 1:25 pm
Forum: Tools/Software
Topic: Enhanced Mitigation Experience Toolkit (EMET)
Replies: 12
Views: 45116

Re: Enhanced Mitigation Experience Toolkit (EMET)

EMET on Windows 10 Insider aka PayloadRestrictions.dll and how it is loaded into a process

https://github.com/deroko/payloadrestrictions
by rkhunter
Mon Aug 14, 2017 11:28 am
Forum: Reverse Engineering and Debugging
Topic: Articles
Replies: 33
Views: 108546

Re: Articles

Exploring Windows virtual memory management

http://www.triplefault.io/2017/08/explo ... emory.html
by rkhunter
Thu Aug 10, 2017 10:51 am
Forum: Tools/Software
Topic: Enhanced Mitigation Experience Toolkit (EMET)
Replies: 12
Views: 45116

Re: Enhanced Mitigation Experience Toolkit (EMET)

Moving Beyond EMET II – Windows Defender Exploit Guard

https://blogs.technet.microsoft.com/srd ... oit-guard/
by rkhunter
Wed Aug 09, 2017 2:49 pm
Forum: Tools/Software
Topic: Enhanced Mitigation Experience Toolkit (EMET)
Replies: 12
Views: 45116

Re: Enhanced Mitigation Experience Toolkit (EMET)

Windows 10 += EMET (Windows Defender Exploit Guard)

https://blogs.technet.microsoft.com/mmp ... rs-update/
by rkhunter
Wed Jun 21, 2017 10:30 am
Forum: Kernel-Mode Development
Topic: Undocumented structures for W2k-Win10
Replies: 21
Views: 74428

Re: Undocumented structures for W2k-Win10

Windows 10 Redstone 2 (1703) ntoskrnl (10.0.15063.413) pdb + extracted structures.
by rkhunter
Thu Jun 15, 2017 11:08 am
Forum: Malware
Topic: Win32/Industroyer
Replies: 1
Views: 12024

Win32/Industroyer

Win32/Industroyer: a new threat for industrial control systems
https://www.welivesecurity.com/wp-conte ... troyer.pdf

Cyber firms warn of malware that could cause power outages
http://www.reuters.com/article/us-cyber ... SKBN1931EG

Samples in attach.
by rkhunter
Thu Mar 02, 2017 10:34 am
Forum: Kernel-Mode Development
Topic: Undocumented structures for W2k-Win10
Replies: 21
Views: 74428

Re: Undocumented structures for W2k-Win10

Windows 10 Redstone 1 (1607) ntoskrnl (10.0.14393.693) pdb + extracted structures.
by rkhunter
Fri Jan 13, 2017 6:11 pm
Forum: Malware
Topic: Finfisher rootkit
Replies: 0
Views: 5858

Finfisher rootkit