Skip to content

Max Kersten

Security through explanation

  • Home
  • Blog
  • Binary Analysis Course
    • Introduction
      • Practical case: Secura Grand Slam CTF “Easy Reverse”
      • The workstation
      • Basic CPU architecture
    • Assembly basics
      • Conditions and loops
      • Practical case: Patch Me 0x01
      • Methods and macros: the call stack
      • Practical case: Buffer Overflow 0x01
      • Crash course
      • Practical case: Crack Me 0x01
      • Practical case: Crack Me 0x02
      • Practical case: Crack Me 0x03
    • Assembly code
      • Hello world
      • Universal Product Code calculator
      • Debugging code
    • Binary types
      • Dot Net
      • Android
      • Browser plug-in
    • Common techniques
      • General techniques
      • Analysing scripts
      • Debugging Dot Net binaries
    • Malware analysis
      • Dot Net RAT
      • Android SMS Stealer
      • LNK & ISESteroids Powershell dropper
      • Emotet droppers
      • Magecart
      • Corona DDoS bot
      • Azorult loader stages
      • Emotet JavaScript downloader
      • Corona Locker
      • ReZer0v4 loader
      • Dumping WhisperGate’s wiper from an Eazfuscator obfuscated loader
    • Analysis scripts
      • PowerShell string formatting deobfuscation
      • JavaScript string concatenation deobfuscation
      • Automatic ReZer0 payload and configuration extraction
      • Ghidra script to decrypt strings in Amadey 1.09
      • Ghidra script to decrypt a string array in XOR DDoS
      • Ghidra script to handle stack strings
    • Obtaining samples
      • Searching samples
    • Documentation
      • Article structure
    • Resources
    • FAQ
    • Miscellaneous
      • A year in review: 2018-2019
      • A year in review: 2019-2020
      • A year in review: 2020-2021
      • A year in review: 2021-2022
  • Whitepapers
  • Projects
    • AndroidProjectCreator
    • m3 framework
      • Extending m3
      • Anubis and Cerberus explained
    • API client libraries
      • Hatching Triage Java API client
      • MalShare Java API client
      • Malware Bazaar Java API client
      • Yaraify Java API client
    • MalwareTheFlag
    • Responsible Disclosures
    • MalPull
    • Capricorn
      • Changelog
    • Archive
      • ShoulderSurfer
      • Stringer
      • Gemini
        • Changelog
  • About me
    • News and conferences
    • Privacy Policy

Month: November 2021

My impression of BlackHat Europe 2021

18/11/202118/12/2022 by libra

The briefing and arsenal presentations of BlackHat Europe 2021 were on 10 and 11 November. It was the first physical European edition since the pandemic started, and it was the first time I attended a BlackHat event. In this blog, I will reflect on the taken COVID measures, the arsenal, the briefings, and the business … Read more

Categories Conferences, Reviews

Releasing the Mobile Malware Mimicking (m3) framework

11/11/202111/11/2021 by libra

The Mobile Malware Mimicking framework, or m3 in short, is built to easily and scalable emulate Android malware whilst using very few resources. One can create fake bots via the command-line interface. The fake bots can then be loaded into the emulator, which will then schedule all fake bots. Each bot will handle the incoming … Read more

Categories m3

Recent Posts

  • My impression of BlackHat Europe 2022
  • My impression of BlackHat MEA 2022
  • Yaraify Java API client version 1.0-stable release notes
  • MalPull 1.4-stable release
  • My impression of BlackHat USA 2022 and DEFCON 30

Archives

  • December 2022
  • November 2022
  • October 2022
  • September 2022
  • August 2022
  • July 2022
  • June 2022
  • May 2022
  • April 2022
  • March 2022
  • February 2022
  • January 2022
  • December 2021
  • November 2021
  • October 2021
  • September 2021
  • August 2021
  • July 2021
  • June 2021
  • May 2021
  • April 2021
  • March 2021
  • February 2021
  • January 2021
  • December 2020
  • November 2020
  • October 2020
  • September 2020
  • August 2020
  • July 2020
  • June 2020
  • May 2020
  • April 2020
  • March 2020
  • February 2020
  • January 2020
  • December 2019
  • November 2019
  • October 2019
  • September 2019
  • August 2019
  • July 2019
  • June 2019
  • May 2019
  • April 2019
  • March 2019
  • February 2019
  • January 2019
  • December 2018
  • November 2018
  • October 2018
  • September 2018
  • August 2018
  • July 2018
  • June 2018
  • January 2018
  • October 2017
  • July 2017
  • June 2017
  • May 2017
  • April 2017

Categories

  • AndroidProjectCreator
  • API Clients
  • Binary Analysis Course
  • Capricorn
  • Conferences
  • Ethics
  • Gemini
  • Lectures
  • m3
  • MageCart
  • MalPull
  • Malware Analysis
  • MalwareTheFlag
  • Responsible Disclosure
  • Reviews
  • Uncategorized
  • Web hacking
  • Whitepapers
© 2023 • GeneratePress
Scroll back to top