├── BlackAlps 2024 ├── Process Injection.mp4 ├── Reach the Nirvana.pdf └── Sleep Obfuscation.mp4 ├── Defcon ├── Defcon31 │ ├── Part 0 - Presentation │ │ ├── Defcon31 - Malware Development On Secured Environment.pdf │ │ └── README.md │ ├── Part 1 - SimpleLoader │ │ ├── .vscode │ │ │ └── settings.json │ │ ├── demon.bin │ │ ├── intermediate │ │ │ ├── main.c │ │ │ └── nt.h │ │ ├── main.c │ │ ├── sc.h │ │ ├── snippets │ │ │ ├── base64.c │ │ │ ├── encryptor.py │ │ │ ├── encryptor_entropy.py │ │ │ ├── encryptor_xor.py │ │ │ ├── nt.h │ │ │ ├── processHandleByName.c │ │ │ ├── unhideBase64Entropy.c │ │ │ └── unxor.c │ │ └── spoilers │ │ │ ├── main.c │ │ │ ├── nt.h │ │ │ └── sc.h │ ├── Part 2 - DLL Injection │ │ ├── intermediate │ │ │ ├── main.c │ │ │ └── main_moduleStomping.c │ │ ├── main.c │ │ ├── main_moduleStomping.c │ │ ├── snippets │ │ │ ├── GetDLLBaseAddress.c │ │ │ ├── GetProcAddressEx.c │ │ │ └── InjectDLL.c │ │ └── spoilers │ │ │ ├── main.c │ │ │ ├── main_moduleStomping.c │ │ │ └── sc.h │ ├── Part 3 - Covering your tracks │ │ ├── main.c │ │ ├── snippets │ │ │ ├── LoadLibraryW.asm │ │ │ ├── ThreadlessInject.c │ │ │ ├── headers.h │ │ │ ├── hwbp.c │ │ │ └── loadNtThings.c │ │ └── spoilers │ │ │ ├── main.c │ │ │ └── sc.h │ └── README.md ├── Defcon32 │ ├── .gitignore │ ├── DEFCON32 - Traumatic Library Loading.pdf │ ├── IDA.zip │ ├── Part 1 - AMSI │ │ ├── readme.md │ │ ├── solutions │ │ │ ├── CMakeLists.txt │ │ │ ├── loadlibrary.c │ │ │ ├── loadlibrary.h │ │ │ └── main.c │ │ └── sources │ │ │ ├── CMakeLists.txt │ │ │ ├── loadlibrary.c │ │ │ ├── loadlibrary.h │ │ │ └── main.c │ ├── Part 2 - Integration with WIN32 │ │ ├── readme.md │ │ ├── solutions │ │ │ ├── CMakeLists.txt │ │ │ ├── loadlibrary.c │ │ │ ├── loadlibrary.h │ │ │ ├── main.c │ │ │ ├── msvc_api_definition.h │ │ │ ├── peb.h │ │ │ └── winapi.h │ │ └── sources │ │ │ ├── CMakeLists.txt │ │ │ ├── loadlibrary.c │ │ │ ├── loadlibrary.h │ │ │ ├── main.c │ │ │ ├── msvc_api_definition.h │ │ │ ├── peb.h │ │ │ └── winapi.h │ ├── Part 3 - Limit of PEB integration │ │ ├── readme.md │ │ ├── solutions │ │ │ ├── CMakeLists.txt │ │ │ ├── loadlibrary.c │ │ │ ├── loadlibrary.h │ │ │ ├── main.c │ │ │ ├── msvc_api_definition.h │ │ │ ├── peb.h │ │ │ └── winapi.h │ │ └── sources │ │ │ ├── CMakeLists.txt │ │ │ ├── loadlibrary.c │ │ │ ├── loadlibrary.h │ │ │ ├── main.c │ │ │ ├── msvc_api_definition.h │ │ │ ├── peb.h │ │ │ └── winapi.h │ ├── Part 4 - Delayed loading and IAT │ │ ├── readme.md │ │ ├── solutions │ │ │ ├── CMakeLists.txt │ │ │ ├── loadlibrary.c │ │ │ ├── loadlibrary.h │ │ │ ├── main.c │ │ │ ├── msvc_api_definition.h │ │ │ ├── peb.h │ │ │ └── winapi.h │ │ └── sources │ │ │ ├── CMakeLists.txt │ │ │ ├── loadlibrary.c │ │ │ ├── loadlibrary.h │ │ │ ├── main.c │ │ │ ├── msvc_api_definition.h │ │ │ ├── peb.h │ │ │ └── winapi.h │ ├── Part 5 - APISet │ │ ├── readme.md │ │ ├── solutions │ │ │ ├── CMakeLists.txt │ │ │ ├── loadlibrary.c │ │ │ ├── loadlibrary.h │ │ │ ├── main.c │ │ │ ├── msvc_api_definition.h │ │ │ ├── peb.h │ │ │ └── winapi.h │ │ └── sources │ │ │ ├── CMakeLists.txt │ │ │ ├── loadlibrary.c │ │ │ ├── loadlibrary.h │ │ │ ├── main.c │ │ │ ├── msvc_api_definition.h │ │ │ ├── peb.h │ │ │ └── winapi.h │ ├── Part 6 - WinHTTP │ │ ├── readme.md │ │ ├── solutions │ │ │ ├── CMakeLists.txt │ │ │ ├── loadlibrary.c │ │ │ ├── loadlibrary.h │ │ │ ├── main.c │ │ │ ├── msvc_api_definition.h │ │ │ ├── peb.h │ │ │ ├── utils.h │ │ │ ├── winapi.c │ │ │ └── winapi.h │ │ └── sources │ │ │ ├── CMakeLists.txt │ │ │ ├── loadlibrary.c │ │ │ ├── loadlibrary.h │ │ │ ├── main.c │ │ │ ├── msvc_api_definition.h │ │ │ ├── peb.h │ │ │ ├── utils.h │ │ │ ├── winapi.c │ │ │ └── winapi.h │ └── readme.md └── Defcon33 │ ├── .gitignore │ ├── 1 - Syscall Hijack │ ├── solution │ │ ├── CMakeLists.txt │ │ ├── hook.asm │ │ └── main.c │ └── sources │ │ ├── CMakeLists.txt │ │ ├── hook.asm │ │ └── main.c │ ├── 2 - DLL Proxying │ ├── solution │ │ ├── CMakeLists.txt │ │ ├── dllmain.c │ │ ├── hook.asm │ │ ├── libcryptox32.dll │ │ └── main.h │ ├── sources │ │ ├── CMakeLists.txt │ │ ├── dllmain.c │ │ ├── hook.asm │ │ ├── libcryptox32.dll │ │ └── main.h │ └── target │ │ ├── CMakeLists.txt │ │ ├── NirvanaTarget.c │ │ └── NirvanaTarget.exe │ ├── 3 - SetProcessInjection │ ├── solution │ │ ├── .gitignore │ │ ├── CMakeLists.txt │ │ ├── aes.c │ │ ├── aes.h │ │ ├── helpers.c │ │ ├── helpers.h │ │ ├── main.c │ │ ├── payload │ │ │ ├── encryptor.py │ │ │ └── encryptor_remote.py │ │ └── sc.h │ └── sources │ │ ├── .gitignore │ │ ├── CMakeLists.txt │ │ ├── aes.c │ │ ├── aes.h │ │ ├── helpers.c │ │ ├── helpers.h │ │ ├── main.c │ │ ├── payload │ │ ├── encryptor.py │ │ └── encryptor_remote.py │ │ └── sc.h │ ├── 4 - NirvanaSleep │ ├── solution │ │ ├── CMakeLists.txt │ │ ├── bin │ │ │ └── NirvanaSleep.exe │ │ ├── common.h │ │ ├── hook.asm │ │ ├── hook.h │ │ ├── main.c │ │ ├── utils.asm │ │ ├── utils.c │ │ └── utils.h │ └── sources │ │ ├── CMakeLists.txt │ │ ├── bin │ │ └── NirvanaSleep.exe │ │ ├── common.h │ │ ├── hook.asm │ │ ├── hook.h │ │ ├── main.c │ │ ├── utils.asm │ │ ├── utils.c │ │ └── utils.h │ ├── README.md │ └── Reach the Nirvana.pdf ├── Isomni'hack 2024 └── Insomni'hack - Uncommon process injection pattern.pdf └── LeHack 2023 └── La Hack - Process Injection Without the standard WIN32API.pdf /BlackAlps 2024/Process Injection.mp4: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/BlackAlps 2024/Process Injection.mp4 -------------------------------------------------------------------------------- /BlackAlps 2024/Reach the Nirvana.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/BlackAlps 2024/Reach the Nirvana.pdf -------------------------------------------------------------------------------- /BlackAlps 2024/Sleep Obfuscation.mp4: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/BlackAlps 2024/Sleep Obfuscation.mp4 -------------------------------------------------------------------------------- /Defcon/Defcon31/Part 0 - Presentation/Defcon31 - Malware Development On Secured Environment.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/Part 0 - Presentation/Defcon31 - Malware Development On Secured Environment.pdf -------------------------------------------------------------------------------- /Defcon/Defcon31/Part 0 - Presentation/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/Part 0 - Presentation/README.md -------------------------------------------------------------------------------- /Defcon/Defcon31/Part 1 - SimpleLoader/.vscode/settings.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/Part 1 - SimpleLoader/.vscode/settings.json -------------------------------------------------------------------------------- /Defcon/Defcon31/Part 1 - SimpleLoader/demon.bin: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/Part 1 - SimpleLoader/demon.bin -------------------------------------------------------------------------------- /Defcon/Defcon31/Part 1 - SimpleLoader/intermediate/main.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/Part 1 - SimpleLoader/intermediate/main.c -------------------------------------------------------------------------------- /Defcon/Defcon31/Part 1 - SimpleLoader/intermediate/nt.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/Part 1 - SimpleLoader/intermediate/nt.h -------------------------------------------------------------------------------- /Defcon/Defcon31/Part 1 - SimpleLoader/main.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/Part 1 - SimpleLoader/main.c -------------------------------------------------------------------------------- /Defcon/Defcon31/Part 1 - SimpleLoader/sc.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/Part 1 - SimpleLoader/sc.h -------------------------------------------------------------------------------- /Defcon/Defcon31/Part 1 - SimpleLoader/snippets/base64.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/Part 1 - SimpleLoader/snippets/base64.c -------------------------------------------------------------------------------- /Defcon/Defcon31/Part 1 - SimpleLoader/snippets/encryptor.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/Part 1 - SimpleLoader/snippets/encryptor.py -------------------------------------------------------------------------------- /Defcon/Defcon31/Part 1 - SimpleLoader/snippets/encryptor_entropy.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/Part 1 - SimpleLoader/snippets/encryptor_entropy.py -------------------------------------------------------------------------------- /Defcon/Defcon31/Part 1 - SimpleLoader/snippets/encryptor_xor.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/Part 1 - SimpleLoader/snippets/encryptor_xor.py -------------------------------------------------------------------------------- /Defcon/Defcon31/Part 1 - SimpleLoader/snippets/nt.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/Part 1 - SimpleLoader/snippets/nt.h -------------------------------------------------------------------------------- /Defcon/Defcon31/Part 1 - SimpleLoader/snippets/processHandleByName.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/Part 1 - SimpleLoader/snippets/processHandleByName.c -------------------------------------------------------------------------------- /Defcon/Defcon31/Part 1 - SimpleLoader/snippets/unhideBase64Entropy.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/Part 1 - SimpleLoader/snippets/unhideBase64Entropy.c -------------------------------------------------------------------------------- /Defcon/Defcon31/Part 1 - SimpleLoader/snippets/unxor.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/Part 1 - SimpleLoader/snippets/unxor.c -------------------------------------------------------------------------------- /Defcon/Defcon31/Part 1 - SimpleLoader/spoilers/main.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/Part 1 - SimpleLoader/spoilers/main.c -------------------------------------------------------------------------------- /Defcon/Defcon31/Part 1 - SimpleLoader/spoilers/nt.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/Part 1 - SimpleLoader/spoilers/nt.h -------------------------------------------------------------------------------- /Defcon/Defcon31/Part 1 - SimpleLoader/spoilers/sc.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/Part 1 - SimpleLoader/spoilers/sc.h -------------------------------------------------------------------------------- /Defcon/Defcon31/Part 2 - DLL Injection/intermediate/main.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/Part 2 - DLL Injection/intermediate/main.c -------------------------------------------------------------------------------- /Defcon/Defcon31/Part 2 - DLL Injection/intermediate/main_moduleStomping.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/Part 2 - DLL Injection/intermediate/main_moduleStomping.c -------------------------------------------------------------------------------- /Defcon/Defcon31/Part 2 - DLL Injection/main.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/Part 2 - DLL Injection/main.c -------------------------------------------------------------------------------- /Defcon/Defcon31/Part 2 - DLL Injection/main_moduleStomping.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/Part 2 - DLL Injection/main_moduleStomping.c -------------------------------------------------------------------------------- /Defcon/Defcon31/Part 2 - DLL Injection/snippets/GetDLLBaseAddress.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/Part 2 - DLL Injection/snippets/GetDLLBaseAddress.c -------------------------------------------------------------------------------- /Defcon/Defcon31/Part 2 - DLL Injection/snippets/GetProcAddressEx.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/Part 2 - DLL Injection/snippets/GetProcAddressEx.c -------------------------------------------------------------------------------- /Defcon/Defcon31/Part 2 - DLL Injection/snippets/InjectDLL.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/Part 2 - DLL Injection/snippets/InjectDLL.c -------------------------------------------------------------------------------- /Defcon/Defcon31/Part 2 - DLL Injection/spoilers/main.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/Part 2 - DLL Injection/spoilers/main.c -------------------------------------------------------------------------------- /Defcon/Defcon31/Part 2 - DLL Injection/spoilers/main_moduleStomping.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/Part 2 - DLL Injection/spoilers/main_moduleStomping.c -------------------------------------------------------------------------------- /Defcon/Defcon31/Part 2 - DLL Injection/spoilers/sc.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/Part 2 - DLL Injection/spoilers/sc.h -------------------------------------------------------------------------------- /Defcon/Defcon31/Part 3 - Covering your tracks/main.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/Part 3 - Covering your tracks/main.c -------------------------------------------------------------------------------- /Defcon/Defcon31/Part 3 - Covering your tracks/snippets/LoadLibraryW.asm: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/Part 3 - Covering your tracks/snippets/LoadLibraryW.asm -------------------------------------------------------------------------------- /Defcon/Defcon31/Part 3 - Covering your tracks/snippets/ThreadlessInject.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/Part 3 - Covering your tracks/snippets/ThreadlessInject.c -------------------------------------------------------------------------------- /Defcon/Defcon31/Part 3 - Covering your tracks/snippets/headers.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/Part 3 - Covering your tracks/snippets/headers.h -------------------------------------------------------------------------------- /Defcon/Defcon31/Part 3 - Covering your tracks/snippets/hwbp.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/Part 3 - Covering your tracks/snippets/hwbp.c -------------------------------------------------------------------------------- /Defcon/Defcon31/Part 3 - Covering your tracks/snippets/loadNtThings.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/Part 3 - Covering your tracks/snippets/loadNtThings.c -------------------------------------------------------------------------------- /Defcon/Defcon31/Part 3 - Covering your tracks/spoilers/main.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/Part 3 - Covering your tracks/spoilers/main.c -------------------------------------------------------------------------------- /Defcon/Defcon31/Part 3 - Covering your tracks/spoilers/sc.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/Part 3 - Covering your tracks/spoilers/sc.h -------------------------------------------------------------------------------- /Defcon/Defcon31/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon31/README.md -------------------------------------------------------------------------------- /Defcon/Defcon32/.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/.gitignore -------------------------------------------------------------------------------- /Defcon/Defcon32/DEFCON32 - Traumatic Library Loading.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/DEFCON32 - Traumatic Library Loading.pdf -------------------------------------------------------------------------------- /Defcon/Defcon32/IDA.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/IDA.zip -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 1 - AMSI/readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 1 - AMSI/readme.md -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 1 - AMSI/solutions/CMakeLists.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 1 - AMSI/solutions/CMakeLists.txt -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 1 - AMSI/solutions/loadlibrary.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 1 - AMSI/solutions/loadlibrary.c -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 1 - AMSI/solutions/loadlibrary.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 1 - AMSI/solutions/loadlibrary.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 1 - AMSI/solutions/main.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 1 - AMSI/solutions/main.c -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 1 - AMSI/sources/CMakeLists.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 1 - AMSI/sources/CMakeLists.txt -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 1 - AMSI/sources/loadlibrary.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 1 - AMSI/sources/loadlibrary.c -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 1 - AMSI/sources/loadlibrary.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 1 - AMSI/sources/loadlibrary.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 1 - AMSI/sources/main.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 1 - AMSI/sources/main.c -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 2 - Integration with WIN32/readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 2 - Integration with WIN32/readme.md -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 2 - Integration with WIN32/solutions/CMakeLists.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 2 - Integration with WIN32/solutions/CMakeLists.txt -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 2 - Integration with WIN32/solutions/loadlibrary.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 2 - Integration with WIN32/solutions/loadlibrary.c -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 2 - Integration with WIN32/solutions/loadlibrary.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 2 - Integration with WIN32/solutions/loadlibrary.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 2 - Integration with WIN32/solutions/main.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 2 - Integration with WIN32/solutions/main.c -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 2 - Integration with WIN32/solutions/msvc_api_definition.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 2 - Integration with WIN32/solutions/msvc_api_definition.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 2 - Integration with WIN32/solutions/peb.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 2 - Integration with WIN32/solutions/peb.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 2 - Integration with WIN32/solutions/winapi.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 2 - Integration with WIN32/solutions/winapi.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 2 - Integration with WIN32/sources/CMakeLists.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 2 - Integration with WIN32/sources/CMakeLists.txt -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 2 - Integration with WIN32/sources/loadlibrary.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 2 - Integration with WIN32/sources/loadlibrary.c -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 2 - Integration with WIN32/sources/loadlibrary.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 2 - Integration with WIN32/sources/loadlibrary.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 2 - Integration with WIN32/sources/main.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 2 - Integration with WIN32/sources/main.c -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 2 - Integration with WIN32/sources/msvc_api_definition.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 2 - Integration with WIN32/sources/msvc_api_definition.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 2 - Integration with WIN32/sources/peb.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 2 - Integration with WIN32/sources/peb.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 2 - Integration with WIN32/sources/winapi.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 2 - Integration with WIN32/sources/winapi.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 3 - Limit of PEB integration/readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 3 - Limit of PEB integration/readme.md -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 3 - Limit of PEB integration/solutions/CMakeLists.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 3 - Limit of PEB integration/solutions/CMakeLists.txt -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 3 - Limit of PEB integration/solutions/loadlibrary.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 3 - Limit of PEB integration/solutions/loadlibrary.c -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 3 - Limit of PEB integration/solutions/loadlibrary.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 3 - Limit of PEB integration/solutions/loadlibrary.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 3 - Limit of PEB integration/solutions/main.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 3 - Limit of PEB integration/solutions/main.c -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 3 - Limit of PEB integration/solutions/msvc_api_definition.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 3 - Limit of PEB integration/solutions/msvc_api_definition.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 3 - Limit of PEB integration/solutions/peb.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 3 - Limit of PEB integration/solutions/peb.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 3 - Limit of PEB integration/solutions/winapi.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 3 - Limit of PEB integration/solutions/winapi.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 3 - Limit of PEB integration/sources/CMakeLists.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 3 - Limit of PEB integration/sources/CMakeLists.txt -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 3 - Limit of PEB integration/sources/loadlibrary.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 3 - Limit of PEB integration/sources/loadlibrary.c -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 3 - Limit of PEB integration/sources/loadlibrary.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 3 - Limit of PEB integration/sources/loadlibrary.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 3 - Limit of PEB integration/sources/main.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 3 - Limit of PEB integration/sources/main.c -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 3 - Limit of PEB integration/sources/msvc_api_definition.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 3 - Limit of PEB integration/sources/msvc_api_definition.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 3 - Limit of PEB integration/sources/peb.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 3 - Limit of PEB integration/sources/peb.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 3 - Limit of PEB integration/sources/winapi.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 3 - Limit of PEB integration/sources/winapi.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 4 - Delayed loading and IAT/readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 4 - Delayed loading and IAT/readme.md -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 4 - Delayed loading and IAT/solutions/CMakeLists.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 4 - Delayed loading and IAT/solutions/CMakeLists.txt -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 4 - Delayed loading and IAT/solutions/loadlibrary.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 4 - Delayed loading and IAT/solutions/loadlibrary.c -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 4 - Delayed loading and IAT/solutions/loadlibrary.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 4 - Delayed loading and IAT/solutions/loadlibrary.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 4 - Delayed loading and IAT/solutions/main.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 4 - Delayed loading and IAT/solutions/main.c -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 4 - Delayed loading and IAT/solutions/msvc_api_definition.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 4 - Delayed loading and IAT/solutions/msvc_api_definition.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 4 - Delayed loading and IAT/solutions/peb.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 4 - Delayed loading and IAT/solutions/peb.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 4 - Delayed loading and IAT/solutions/winapi.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 4 - Delayed loading and IAT/solutions/winapi.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 4 - Delayed loading and IAT/sources/CMakeLists.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 4 - Delayed loading and IAT/sources/CMakeLists.txt -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 4 - Delayed loading and IAT/sources/loadlibrary.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 4 - Delayed loading and IAT/sources/loadlibrary.c -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 4 - Delayed loading and IAT/sources/loadlibrary.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 4 - Delayed loading and IAT/sources/loadlibrary.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 4 - Delayed loading and IAT/sources/main.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 4 - Delayed loading and IAT/sources/main.c -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 4 - Delayed loading and IAT/sources/msvc_api_definition.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 4 - Delayed loading and IAT/sources/msvc_api_definition.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 4 - Delayed loading and IAT/sources/peb.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 4 - Delayed loading and IAT/sources/peb.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 4 - Delayed loading and IAT/sources/winapi.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 4 - Delayed loading and IAT/sources/winapi.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 5 - APISet/readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 5 - APISet/readme.md -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 5 - APISet/solutions/CMakeLists.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 5 - APISet/solutions/CMakeLists.txt -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 5 - APISet/solutions/loadlibrary.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 5 - APISet/solutions/loadlibrary.c -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 5 - APISet/solutions/loadlibrary.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 5 - APISet/solutions/loadlibrary.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 5 - APISet/solutions/main.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 5 - APISet/solutions/main.c -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 5 - APISet/solutions/msvc_api_definition.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 5 - APISet/solutions/msvc_api_definition.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 5 - APISet/solutions/peb.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 5 - APISet/solutions/peb.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 5 - APISet/solutions/winapi.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 5 - APISet/solutions/winapi.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 5 - APISet/sources/CMakeLists.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 5 - APISet/sources/CMakeLists.txt -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 5 - APISet/sources/loadlibrary.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 5 - APISet/sources/loadlibrary.c -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 5 - APISet/sources/loadlibrary.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 5 - APISet/sources/loadlibrary.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 5 - APISet/sources/main.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 5 - APISet/sources/main.c -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 5 - APISet/sources/msvc_api_definition.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 5 - APISet/sources/msvc_api_definition.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 5 - APISet/sources/peb.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 5 - APISet/sources/peb.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 5 - APISet/sources/winapi.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 5 - APISet/sources/winapi.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 6 - WinHTTP/readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 6 - WinHTTP/readme.md -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 6 - WinHTTP/solutions/CMakeLists.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 6 - WinHTTP/solutions/CMakeLists.txt -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 6 - WinHTTP/solutions/loadlibrary.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 6 - WinHTTP/solutions/loadlibrary.c -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 6 - WinHTTP/solutions/loadlibrary.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 6 - WinHTTP/solutions/loadlibrary.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 6 - WinHTTP/solutions/main.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 6 - WinHTTP/solutions/main.c -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 6 - WinHTTP/solutions/msvc_api_definition.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 6 - WinHTTP/solutions/msvc_api_definition.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 6 - WinHTTP/solutions/peb.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 6 - WinHTTP/solutions/peb.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 6 - WinHTTP/solutions/utils.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 6 - WinHTTP/solutions/utils.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 6 - WinHTTP/solutions/winapi.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 6 - WinHTTP/solutions/winapi.c -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 6 - WinHTTP/solutions/winapi.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 6 - WinHTTP/solutions/winapi.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 6 - WinHTTP/sources/CMakeLists.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 6 - WinHTTP/sources/CMakeLists.txt -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 6 - WinHTTP/sources/loadlibrary.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 6 - WinHTTP/sources/loadlibrary.c -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 6 - WinHTTP/sources/loadlibrary.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 6 - WinHTTP/sources/loadlibrary.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 6 - WinHTTP/sources/main.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 6 - WinHTTP/sources/main.c -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 6 - WinHTTP/sources/msvc_api_definition.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 6 - WinHTTP/sources/msvc_api_definition.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 6 - WinHTTP/sources/peb.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 6 - WinHTTP/sources/peb.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 6 - WinHTTP/sources/utils.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 6 - WinHTTP/sources/utils.h -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 6 - WinHTTP/sources/winapi.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 6 - WinHTTP/sources/winapi.c -------------------------------------------------------------------------------- /Defcon/Defcon32/Part 6 - WinHTTP/sources/winapi.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/Part 6 - WinHTTP/sources/winapi.h -------------------------------------------------------------------------------- /Defcon/Defcon32/readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon32/readme.md -------------------------------------------------------------------------------- /Defcon/Defcon33/.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/.gitignore -------------------------------------------------------------------------------- /Defcon/Defcon33/1 - Syscall Hijack/solution/CMakeLists.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/1 - Syscall Hijack/solution/CMakeLists.txt -------------------------------------------------------------------------------- /Defcon/Defcon33/1 - Syscall Hijack/solution/hook.asm: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/1 - Syscall Hijack/solution/hook.asm -------------------------------------------------------------------------------- /Defcon/Defcon33/1 - Syscall Hijack/solution/main.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/1 - Syscall Hijack/solution/main.c -------------------------------------------------------------------------------- /Defcon/Defcon33/1 - Syscall Hijack/sources/CMakeLists.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/1 - Syscall Hijack/sources/CMakeLists.txt -------------------------------------------------------------------------------- /Defcon/Defcon33/1 - Syscall Hijack/sources/hook.asm: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/1 - Syscall Hijack/sources/hook.asm -------------------------------------------------------------------------------- /Defcon/Defcon33/1 - Syscall Hijack/sources/main.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/1 - Syscall Hijack/sources/main.c -------------------------------------------------------------------------------- /Defcon/Defcon33/2 - DLL Proxying/solution/CMakeLists.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/2 - DLL Proxying/solution/CMakeLists.txt -------------------------------------------------------------------------------- /Defcon/Defcon33/2 - DLL Proxying/solution/dllmain.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/2 - DLL Proxying/solution/dllmain.c -------------------------------------------------------------------------------- /Defcon/Defcon33/2 - DLL Proxying/solution/hook.asm: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/2 - DLL Proxying/solution/hook.asm -------------------------------------------------------------------------------- /Defcon/Defcon33/2 - DLL Proxying/solution/libcryptox32.dll: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/2 - DLL Proxying/solution/libcryptox32.dll -------------------------------------------------------------------------------- /Defcon/Defcon33/2 - DLL Proxying/solution/main.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/2 - DLL Proxying/solution/main.h -------------------------------------------------------------------------------- /Defcon/Defcon33/2 - DLL Proxying/sources/CMakeLists.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/2 - DLL Proxying/sources/CMakeLists.txt -------------------------------------------------------------------------------- /Defcon/Defcon33/2 - DLL Proxying/sources/dllmain.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/2 - DLL Proxying/sources/dllmain.c -------------------------------------------------------------------------------- /Defcon/Defcon33/2 - DLL Proxying/sources/hook.asm: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/2 - DLL Proxying/sources/hook.asm -------------------------------------------------------------------------------- /Defcon/Defcon33/2 - DLL Proxying/sources/libcryptox32.dll: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/2 - DLL Proxying/sources/libcryptox32.dll -------------------------------------------------------------------------------- /Defcon/Defcon33/2 - DLL Proxying/sources/main.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/2 - DLL Proxying/sources/main.h -------------------------------------------------------------------------------- /Defcon/Defcon33/2 - DLL Proxying/target/CMakeLists.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/2 - DLL Proxying/target/CMakeLists.txt -------------------------------------------------------------------------------- /Defcon/Defcon33/2 - DLL Proxying/target/NirvanaTarget.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/2 - DLL Proxying/target/NirvanaTarget.c -------------------------------------------------------------------------------- /Defcon/Defcon33/2 - DLL Proxying/target/NirvanaTarget.exe: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/2 - DLL Proxying/target/NirvanaTarget.exe -------------------------------------------------------------------------------- /Defcon/Defcon33/3 - SetProcessInjection/solution/.gitignore: -------------------------------------------------------------------------------- 1 | cmake-* 2 | .idea/* 3 | build 4 | sc.txt -------------------------------------------------------------------------------- /Defcon/Defcon33/3 - SetProcessInjection/solution/CMakeLists.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/3 - SetProcessInjection/solution/CMakeLists.txt -------------------------------------------------------------------------------- /Defcon/Defcon33/3 - SetProcessInjection/solution/aes.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/3 - SetProcessInjection/solution/aes.c -------------------------------------------------------------------------------- /Defcon/Defcon33/3 - SetProcessInjection/solution/aes.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/3 - SetProcessInjection/solution/aes.h -------------------------------------------------------------------------------- /Defcon/Defcon33/3 - SetProcessInjection/solution/helpers.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/3 - SetProcessInjection/solution/helpers.c -------------------------------------------------------------------------------- /Defcon/Defcon33/3 - SetProcessInjection/solution/helpers.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/3 - SetProcessInjection/solution/helpers.h -------------------------------------------------------------------------------- /Defcon/Defcon33/3 - SetProcessInjection/solution/main.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/3 - SetProcessInjection/solution/main.c -------------------------------------------------------------------------------- /Defcon/Defcon33/3 - SetProcessInjection/solution/payload/encryptor.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/3 - SetProcessInjection/solution/payload/encryptor.py -------------------------------------------------------------------------------- /Defcon/Defcon33/3 - SetProcessInjection/solution/payload/encryptor_remote.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/3 - SetProcessInjection/solution/payload/encryptor_remote.py -------------------------------------------------------------------------------- /Defcon/Defcon33/3 - SetProcessInjection/solution/sc.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/3 - SetProcessInjection/solution/sc.h -------------------------------------------------------------------------------- /Defcon/Defcon33/3 - SetProcessInjection/sources/.gitignore: -------------------------------------------------------------------------------- 1 | cmake-* 2 | .idea/* 3 | build 4 | sc.txt -------------------------------------------------------------------------------- /Defcon/Defcon33/3 - SetProcessInjection/sources/CMakeLists.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/3 - SetProcessInjection/sources/CMakeLists.txt -------------------------------------------------------------------------------- /Defcon/Defcon33/3 - SetProcessInjection/sources/aes.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/3 - SetProcessInjection/sources/aes.c -------------------------------------------------------------------------------- /Defcon/Defcon33/3 - SetProcessInjection/sources/aes.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/3 - SetProcessInjection/sources/aes.h -------------------------------------------------------------------------------- /Defcon/Defcon33/3 - SetProcessInjection/sources/helpers.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/3 - SetProcessInjection/sources/helpers.c -------------------------------------------------------------------------------- /Defcon/Defcon33/3 - SetProcessInjection/sources/helpers.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/3 - SetProcessInjection/sources/helpers.h -------------------------------------------------------------------------------- /Defcon/Defcon33/3 - SetProcessInjection/sources/main.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/3 - SetProcessInjection/sources/main.c -------------------------------------------------------------------------------- /Defcon/Defcon33/3 - SetProcessInjection/sources/payload/encryptor.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/3 - SetProcessInjection/sources/payload/encryptor.py -------------------------------------------------------------------------------- /Defcon/Defcon33/3 - SetProcessInjection/sources/payload/encryptor_remote.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/3 - SetProcessInjection/sources/payload/encryptor_remote.py -------------------------------------------------------------------------------- /Defcon/Defcon33/3 - SetProcessInjection/sources/sc.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/3 - SetProcessInjection/sources/sc.h -------------------------------------------------------------------------------- /Defcon/Defcon33/4 - NirvanaSleep/solution/CMakeLists.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/4 - NirvanaSleep/solution/CMakeLists.txt -------------------------------------------------------------------------------- /Defcon/Defcon33/4 - NirvanaSleep/solution/bin/NirvanaSleep.exe: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/4 - NirvanaSleep/solution/bin/NirvanaSleep.exe -------------------------------------------------------------------------------- /Defcon/Defcon33/4 - NirvanaSleep/solution/common.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/4 - NirvanaSleep/solution/common.h -------------------------------------------------------------------------------- /Defcon/Defcon33/4 - NirvanaSleep/solution/hook.asm: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/4 - NirvanaSleep/solution/hook.asm -------------------------------------------------------------------------------- /Defcon/Defcon33/4 - NirvanaSleep/solution/hook.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/4 - NirvanaSleep/solution/hook.h -------------------------------------------------------------------------------- /Defcon/Defcon33/4 - NirvanaSleep/solution/main.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/4 - NirvanaSleep/solution/main.c -------------------------------------------------------------------------------- /Defcon/Defcon33/4 - NirvanaSleep/solution/utils.asm: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/4 - NirvanaSleep/solution/utils.asm -------------------------------------------------------------------------------- /Defcon/Defcon33/4 - NirvanaSleep/solution/utils.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/4 - NirvanaSleep/solution/utils.c -------------------------------------------------------------------------------- /Defcon/Defcon33/4 - NirvanaSleep/solution/utils.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/4 - NirvanaSleep/solution/utils.h -------------------------------------------------------------------------------- /Defcon/Defcon33/4 - NirvanaSleep/sources/CMakeLists.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/4 - NirvanaSleep/sources/CMakeLists.txt -------------------------------------------------------------------------------- /Defcon/Defcon33/4 - NirvanaSleep/sources/bin/NirvanaSleep.exe: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/4 - NirvanaSleep/sources/bin/NirvanaSleep.exe -------------------------------------------------------------------------------- /Defcon/Defcon33/4 - NirvanaSleep/sources/common.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/4 - NirvanaSleep/sources/common.h -------------------------------------------------------------------------------- /Defcon/Defcon33/4 - NirvanaSleep/sources/hook.asm: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/4 - NirvanaSleep/sources/hook.asm -------------------------------------------------------------------------------- /Defcon/Defcon33/4 - NirvanaSleep/sources/hook.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/4 - NirvanaSleep/sources/hook.h -------------------------------------------------------------------------------- /Defcon/Defcon33/4 - NirvanaSleep/sources/main.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/4 - NirvanaSleep/sources/main.c -------------------------------------------------------------------------------- /Defcon/Defcon33/4 - NirvanaSleep/sources/utils.asm: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/4 - NirvanaSleep/sources/utils.asm -------------------------------------------------------------------------------- /Defcon/Defcon33/4 - NirvanaSleep/sources/utils.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/4 - NirvanaSleep/sources/utils.c -------------------------------------------------------------------------------- /Defcon/Defcon33/4 - NirvanaSleep/sources/utils.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/4 - NirvanaSleep/sources/utils.h -------------------------------------------------------------------------------- /Defcon/Defcon33/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/README.md -------------------------------------------------------------------------------- /Defcon/Defcon33/Reach the Nirvana.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Defcon/Defcon33/Reach the Nirvana.pdf -------------------------------------------------------------------------------- /Isomni'hack 2024/Insomni'hack - Uncommon process injection pattern.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/Isomni'hack 2024/Insomni'hack - Uncommon process injection pattern.pdf -------------------------------------------------------------------------------- /LeHack 2023/La Hack - Process Injection Without the standard WIN32API.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OtterHacker/Conferences/HEAD/LeHack 2023/La Hack - Process Injection Without the standard WIN32API.pdf --------------------------------------------------------------------------------