Psyrun

https://psyrun.github.io/Psyrunpsyrun's blog about malware analysis and other security topics 2024-07-04T11:02:48+00:00 Psyrun https://psyrun.github.io/ Jekyll © 2024 Psyrun /assets/img/favicons/favicon.ico /assets/img/favicons/favicon-96x96.png Windows Process Free Memory and Privelege Enumeration2024-06-20T00:00:00+00:00 2024-06-20T00:00:00+00:00 https://psyrun.github.io/process-privelege-enumeration/ Psyrun

Exploring Free Memory Regions in Windows Processes When analyzing software vulnerabilities, it’s crucial to understand the memory layout of a process. One aspect of this is identifying free memory regions, which can be exploited by attackers to execute arbitrary code. In this blog post, we’ll explore a program written in C that lists all processes running on a Windows system and identifies the...

Enumerating Running Processes in Windows for Vulnerability Research2024-06-19T00:00:00+00:00 2024-06-20T05:40:42+00:00 https://psyrun.github.io/process-enumeration/ Psyrun

Introduction This blog discusses a simple C program for enumerating running processes in Windows using the Windows API and explains its relevance in vulnerability research. The program provides a foundation for analyzing running processes, which is crucial in identifying potential vulnerabilities in software and system configurations. Program Overview The program uses the Windows API functions...

Reverse Shell in Go2024-06-19T00:00:00+00:00 2024-06-20T05:42:52+00:00 https://psyrun.github.io/go-revshell/ Psyrun

Building a Reverse Shell in Go In this tutorial, we’ll explore how to create a basic reverse shell in Go. A reverse shell is a type of shell where the target machine communicates back to the attacking machine. This can be useful for remote administration or accessing a system that is behind a firewall. Understanding the Code Let’s break down the code step by step: ### Package and Imports p...

Recon with psymap-nmap.py2024-06-18T00:00:00+00:00 2024-06-20T05:45:48+00:00 https://psyrun.github.io/Recon-with-nmap/ Psyrun

Understanding Nmap Commands for Network Scanning Nmap (Network Mapper) is a powerful open-source tool used for network exploration and security auditing. It works by sending packets to target hosts and analyzing the responses to determine various aspects of the network, such as open ports, operating systems, and services running on the hosts. In this blog post, we will explore various Nmap co...