all InfoSec news
LightsOut - Generate An Obfuscated DLL That Will Disable AMSI And ETW
Nov. 19, 2023, 11:30 a.m. | noreply@blogger.com (Unknown)
KitPloit - PenTest Tools! www.kitploit.com
LightsOut will generate an obfuscated DLL that will disable AMSI & ETW while trying to evade AV. This is done by randomizing all WinAPI functions used, xor encoding strings, and utilizing basic sandbox checks. Mingw-w64 is used to compile the obfuscated C code into a DLL that can be loaded into any process where AMSI or ETW are present (i.e. PowerShell).
LightsOut is designed to work on Linux systems with python3
and mingw-w64
installed. No other dependencies are required.
Features …
More from www.kitploit.com / KitPloit - PenTest Tools!
Subhunter - A Fast Subdomain Takeover Tool
4 days, 21 hours ago |
www.kitploit.com
BypassFuzzer - Fuzz 401/403/404 Pages For Bypasses
6 days, 21 hours ago |
www.kitploit.com
Jobs in InfoSec / Cybersecurity
Information Security Engineers
@ D. E. Shaw Research | New York City
Technology Security Analyst
@ Halton Region | Oakville, Ontario, Canada
Senior Cyber Security Analyst
@ Valley Water | San Jose, CA
Security Operations Vice President - Content Developer
@ JPMorgan Chase & Co. | Jersey City, NJ, United States
Computer and Forensics Investigator
@ ManTech | 221BQ - Cstmr Site,Springfield,VA
Senior Security Analyst
@ Oracle | United States