GreySec Forums

Full Version: The life of binaries and exploiting the knowledge gained from it
You're currently viewing a stripped down version of our content. View the full version with proper formatting.
Recently I got interested in PE/ELF file formats and started researching it, it's quite interesting to see how an executable is created, loaded into memory and executed.
So, I wanted to share my learning resources with you. Here it is:


OpenSecurityTraining playlist on PE/ELF file formats: https://www.youtube.com/watch?v=ls8I__h1...1Ki57vMIc3


Random blog posts:
https://volkyz.com/pe-file-format-introduction-part-1/
http://win32assembly.programminghorizon....-tut1.html
http://www.delphibasics.info/home/delphi...rmat-part1
https://msdn.microsoft.com/en-us/library/ms809762.aspx

Other:
http://www.stonedcoder.org/~kd/lib/CBJ-2005-74.pdf
https://0x00sec.org/t/pe-file-infection/401
https://docs.microsoft.com/en-us/windows.../pe-format

I'm currently working on a more effective way of doing the well known reflective DLL injection, so if you're interested let me know, and maybe I will write a small article about the methodology I used to get around some of the detection mechanisms.
Anyway, have a great read and see ya ! Idea
(09-04-2018, 10:24 PM)TheD0ctor Wrote: [ -> ]I'm currently working on a more effective way of doing the well known reflective DLL injection, so if you're interested let me know, and maybe I will write a small article about the methodology I used to get around some of the detection mechanisms.
Anyway, have a great read and see ya ! Idea

I'm always interested in reading what people write Tongue
Share it when you end up that post!

Thanks for the resources btw Smile
(09-04-2018, 10:24 PM)TheD0ctor Wrote: [ -> ]Recently I got interested in PE/ELF file formats and started researching it, it's quite interesting to see how an executable is created, loaded into memory and executed.
So, I wanted to share my learning resources with you. Here it is:

Cool post. I'll definitely be digging through this. Definitely let us (me) know if you write that DLL injection article. Would check that out as well.

cyb3rp0rk
(09-04-2018, 10:24 PM)TheD0ctor Wrote: [ -> ]Recently I got interested in PE/ELF file formats and started researching it, it's quite interesting to see how an executable is created, loaded into memory and executed.
So, I wanted to share my learning resources with you. Here it is:


OpenSecurityTraining playlist on PE/ELF file formats: https://www.youtube.com/watch?v=ls8I__h1...1Ki57vMIc3


Random blog posts:
https://volkyz.com/pe-file-format-introduction-part-1/
http://win32assembly.programminghorizon....-tut1.html
http://www.delphibasics.info/home/delphi...rmat-part1
https://msdn.microsoft.com/en-us/library/ms809762.aspx

Other:
http://www.stonedcoder.org/~kd/lib/CBJ-2005-74.pdf
https://0x00sec.org/t/pe-file-infection/401
https://docs.microsoft.com/en-us/windows.../pe-format

I'm currently working on a more effective way of doing the well known reflective DLL injection, so if you're interested let me know, and maybe I will write a small article about the methodology I used to get around some of the detection mechanisms.
Anyway, have a great read and see ya ! Idea
I am interested in learning about DLL Injection methods if u have completed already. Thanks