Thread

📚 Show all threads belong to 5pider
5pider

5pider

04-08-2022

@C5pider

18:18

90% of my Twitter DMs are asking me about how to start getting into Malware development. Well, I love answering them but it's easier to write a small thread about it so here we go. 1/12

First, we gotta learn some fundamentals. I would highly recommend learning following things: Win32 API Networking (Communicate over HTTP/s, DNS, ICMP) Encryption (basic use of Aes, Xor, Rc4, etc.) Injection Techniques Learn how to use Debuggers. trust me you gonna need this 2/12

So alright the first resource I recommend going through is the maelstrom blog post series from @preemptdev: 3/12

pre.empt.dev: Connoisseurs of the finest OST

pre.empt.dev is a group of people working on making Windows fun.

https://pre.empt.dev/

Read the source code of already existing open source C2s like Metasploits Meterpreter, Empire Framework, SharpC2, Shadow. These projects contain so much info and code on how to: make malware modular using reflective loaders/code injection, communicate with the C2, and more. 4/12

Another great "write your own C2 blog post series" is the one from @Ahm3d_H3sham 5/12

Building a Basic C2

In this post I talk about the approaches I took trying to build a basic C2.

https://0xrick.github.io/misc/c2/

Great courses I really recommend taking is by @SEKTOR7net: (Beginner) (Intermediate) Worth the money 6/12

RED TEAM Operator: Malware Development Essentials Course

This course will teach you how to become a better ethical hacker, pentester and red teamer by learning malware develo...

https://institute.sektor7.net/red-team...

RED TEAM Operator: Malware Development Intermediate Course

More advanced malware development techniques in Windows, including: API hooking, 32-/64-bit migrations, reflective bi...

https://institute.sektor7.net/rto-mald...

A website I recommend bookmark is by @CaptMeelo Some very good blogs about evading AVs, Process Injection, native API, and more. 7/12

Hack.Learn.Share

This blog contains write-ups of the things that I researched, learned, and wanted to share to others.

https://captmeelo.com/

I would recommend you to read a few of my Projects. I wrote them to learn how specific techniques work. For example: I wrote KaynLdr to learn how Reflective Loaders work (same with CoffeeLdr) 8/12

Cracked5pider - Overview

scamming threat actors. Cracked5pider has 6 repositories available. Follow their code on GitHub.

https://github.com/Cracked5pider

Another amazing place to learn malware development is of course @vxunderground is one of the best places to learn malware development. They have papers, projects, code snippets, and samples to reverse. 9/12

vx-underground

https://vx-underground.org/

People I really recommend following and looking into their projects/courses/blogs/talks/tweets are: @0xBoku @trickster012 @s4ntiago_p @kyleavery_ @SolomonSklash @GeKarantzas @_xpn_ @_RastaMouse @am0nsec @LittleJoeTables 10/12

Another list of people I really recommend following and looking into their projects/courses/blogs/talks/tweets are: @ilove2pwn_ @ORCA10K @rad9800 @modexpblog @peterwintrsmith @passthehashbrwn @waldoirc @Und3rf10w @MrUn1k0d3r @chvancooten 11/12

Learn how to use google lol I learned nearly everything from public resources. 12/12

Image (Testing) PDF
Go to Tweet
Follow us on Twitter

to be informed of the latest developments and updates!


You can easily use to @tivitikothread bot for create more readable thread!
Donate 💲

You can keep this app free of charge by supporting 😊

for server charges...