(Anti-)Anti-Rootkit Techniques - Part III: Hijacking Pointers
Hijacking .data ptrs to execute rootkit code
Released part III of my anti anti rootkit series recently. I showcase a way to implement a 'threadless' rootkit by using a spin on the .data pointer hijacking technique known from kernel game cheats.
This part concludes the trilogy, but theres more to come ;)
eversinc33.com/posts/anti-a...
01.03.2025 13:39 β π 6 π 1 π¬ 0 π 0
Father, husband, hacker, Irish
redteaming.org
hacker, poster, weird machine mechanic
https://chompie.rip
ζεΏ / Antiquarian @ IBM Adversary Services / Ex-TORE βοΈπ¦
/ I rewrite pointers and read memory / AI Psychoanalyst / Teaching
at labs.calypso.pub
cybersecurity weather man. scanning the horizons for cloudy cyber. Expert at nothing except computer rubbish. Anti-ransomware since 2015.
VXer, Computer Goth, Malware Musician
@NotMedic from that other place.
Adversarial Cartographer. DEFCON Staff & CFP Board. MS in DF. Fmr Fire/EMS. Red and Blue. Builder. Tinkerer. Chaotic Good.
Running on vibes. Cyber vibes.
Security researcher with a camera | @FalconForce.nl | Microsoft MVP | Snow man role model | https://youtube.com/@olafhartong
A circus artist with a visual studio license
Team Lead Kovert AS, previously Red Team TrustedSec, terrible creator of InfoSec content πΉOpinions are my own and not the views of my employer.
hacker, maldev, pokemon irl
Hacker at outsidersecurity.nl. Researches Entra ID, AD and occasionally Windows security. I write open source security tools and do blogs/talks to educate others on these topics. Blog: dirkjanm.io
Logging into things I shouldn't.
Red Team Lead @ NVIDIA
The largest collection of malware source code, samples, and papers on the internet.
Password: infected
(unofficial, this is a bot! Maintained by @yjb.bsky.social, the bot can't handle retweets, video, and maybe a few other things)
Creators of BloodHound | Experts in Adversary Tradecraft | Leaders in Identity Attack Path Management
@its_a_feature_ on Twitter | Mythic developer | @SpecterOps
Volatility Core developer, Dir. of Research Volexity, LSU Cyber
Security researcher.
I have a blog: https://sapirxfed.com
