Which language should we learn to fud .exe files?
Where should we start, I already have basic knowledge of C#, I understand software algorithms.
Where should we start, I already have basic knowledge of C#, I understand software algorithms.
-
XSS.stack #1 – первый литературный журнал от юзеров форума
Which language should we learn to fud .exe files?
- Автор темы fraude
- Дата начала
(Fud) Malware obfuscation is a technique used to make malware more difficult for antivirus software to detect and analyze. This can be done using a variety of methods, such as encrypting the code, modifying the program's control flow, or obfuscating the data.
BatCloak is an open-source obfuscation engine, It has quickly become a popular tool for its effectiveness in evading antivirus and edr using a variety of obfuscation techniques, for example:
String obfuscation: Text strings within the malware code are encrypted or replaced with random values.
Control flow obfuscation: The control flow of the malware code is modified to make it more difficult to follow.
Data obfuscation: The data used by the malware is encrypted or obfuscated.
Alternatives to BatCloak
Actually BatCloak are recognized by a lot of edr and there are several other obfuscation engines available, including:
Jlaive: A batch file creation tool that uses BatCloak to obfuscate code.
ScrubCrypt: A malware loader that uses BatCloak to evade antivirus software.
GoFUD: An obfuscation engine designed to be highly customizable.
String obfuscation and cryptographic techniques are more effective, but consider that actually a lot of security solution try to identify also the correlation between user action and tools
BatCloak is an open-source obfuscation engine, It has quickly become a popular tool for its effectiveness in evading antivirus and edr using a variety of obfuscation techniques, for example:
String obfuscation: Text strings within the malware code are encrypted or replaced with random values.
Control flow obfuscation: The control flow of the malware code is modified to make it more difficult to follow.
Data obfuscation: The data used by the malware is encrypted or obfuscated.
Alternatives to BatCloak
Actually BatCloak are recognized by a lot of edr and there are several other obfuscation engines available, including:
Jlaive: A batch file creation tool that uses BatCloak to obfuscate code.
ScrubCrypt: A malware loader that uses BatCloak to evade antivirus software.
GoFUD: An obfuscation engine designed to be highly customizable.
String obfuscation and cryptographic techniques are more effective, but consider that actually a lot of security solution try to identify also the correlation between user action and tools
In general you don't choose the language to make your .exe fud, you make .exe fud using the language. If you think you can just peek a random language and everything magically become fud, I have bad news for you: (1) nothing is fud, even legit software gets detected from time to time; (2) your malware may be somewhat close to being fud until it gets used enough times, and then when it will be detected, how do you solve the problem? By language hoping again? This is not the solution you want.
Код:
https://www.codeproject.com/Articles/1174823/Cplusplus-Runtime-Crypter
C# always gud
There IS no "best language" to make you're malware FUD you just need to implement various methods to make you're malware FUD, payload encryption, strings obfuscation, sign you're malware, PPID spoofing... To make something FUD, you need to implement these type of techniques and do something new to avoid detection.
Better can be c++ with his memory controlling or low level language for example c