Outer Web | Explore

Explore >> Select a destination

You are here		scorpiosoftware.net Building a Verifier DLL - Pavel Yosifovich
\|	\|	openpunk.com Injecting DLLs at the start of a Windows process - OpenPunk	2.5 parsecs away Travel
\|	\|	Recently I faced a rather intimidating problem while working on a project. The problem was fairly simple from an objective point of view: "How do I load a DLL into a process on startup?" Now you might be wondering, "Why not just patch the IAT (import address table) on the executable and force it to load your payload DLL??" Yes! That was my exact thoughts too, however for reasons I'll explain it wasn't that simple.	2.5 parsecs away Travel
\|	\|	modexp.wordpress.com Invoking System Calls and Windows Debugger Engine \| modexp	3.7 parsecs away Travel
\|	\|	Introduction Quick post about Windows System calls that I forgot about working on after the release of Dumpert by Cn33liz last year, which is described in this post. Typically, EDR and AV set hooks on Win32 API or NT wrapper functions to detect and mitigate against malicious activity. Dumpert attempts to bypass any user-level hooks...	3.7 parsecs away Travel
\|	\|	erikmcclure.com Windows Won't Let My Program Crash	9.8 parsecs away Travel
\|	\|	It's been known for a while that windows has a bad habit of eating your exceptions if you're inside a WinProc callback function. This behavior can cause all sorts of mayhem, like your program just vanishing into thin air without any error messages due to a stack overflow that terminated the program without actually throwing an exception. What I didn't realize is that it also eats assert(), which makes debugging hell, because the assertion would throw, the entire user callback would immediately terminate without any stack unwinding, and then windows would just... keep going, even though the program is now in a laughably corrupt state, because only half the function executed.	9.8 parsecs away Travel
\|	\|	memo.mx Multi stage docker build for python \| Memo Garcia	74.9 parsecs away Travel
\|		Docker multi-stage build is a great way to build a container images with a minimal footprint. Compiled languages like Go or Rust can take advantage of this by just shipping a binary to a container This is an example from the official docs: FROM golang:1.16 WORKDIR /go/src/github.com/alexellis/href-counter/ RUN go get -d -v golang.org/x/net/html COPY app.go ./ RUN CGO_ENABLED=0 go build -a -installsuffix cgo -o app . FROM alpine:latest RUN apk --no-cache add ca-certificates WORKDIR /root/ COPY --from=0 /g...	74.9 parsecs away Travel