Shellcode injection is one of the most used defence evasion technique because shellcode is injected into a volatile memory therefore there are no traces left of any exploitation. Apart from the injector itself, shellcode injection can be called fileless or partial fileless malware. Since there are no files being dropped…

(Direct Syscalls, Sandbox Bypass, API Hashing, AES Encryption) Introduction In this blog, I am going to explain multiple techniques to bypass AV/EDR/XDR security solutions. As a red teamer and security guy, I always try to explore new methods and approaches to bypass security controls. My work is related to offensive security, “Offense is the best defense”. …

Cyber reversing is a new term mutually agreed upon at cytomate. Cyber reversing revolves around the practice of reverse engineering for cyber security enhancement. It is a next generation offensive framework introduced by Cytomate that includes a variety of procedures and techniques revolving around reverse engineering. Our years at cytomate…