Offensive Security | ConsulThink https://www.consulthink.it IT consulting Tue, 19 Mar 2024 14:52:22 +0000 it-IT hourly 1 https://www.consulthink.it/wp-content/uploads/2020/02/logo-icon-87x87.ico Offensive Security | ConsulThink https://www.consulthink.it 32 32 Azure Security Assessment https://www.consulthink.it/azure-security-assessment/?utm_source=rss&utm_medium=rss&utm_campaign=azure-security-assessment Tue, 19 Mar 2024 14:47:20 +0000 https://www.consulthink.it/?p=10497 Nell’ultimo decennio l’industria del cloud computing è stata interessata da una crescita esponenziale. Secondo Exploding Topics, dal 2015 ad oggi la quantità di dati aziendali gestiti e mantenuti in cloud è raddoppiata, fino a raggiungere circa il 60% della totalità delle informazioni corporate. In particolare, circa il 22% del mercato cloud appartiene a Microsoft Azure, ...

The post Azure Security Assessment first appeared on ConsulThink.

]]> Rustware Part 3: Dynamic API resolution https://www.consulthink.it/rustware-part-3-dynamic-api-resolution/?utm_source=rss&utm_medium=rss&utm_campaign=rustware-part-3-dynamic-api-resolution Fri, 09 Feb 2024 10:55:00 +0000 https://www.consulthink.it/?p=10372 In the previous blog post we have seen how to perform a shellcode process injection by finding a target process PID using several WinAPIs, in that case all the WinAPIs were called directly. Usually malwares resolve the WinAPI address at runtime in order to hide malicious behaviours during static analysis. In this blog post we ...

The post Rustware Part 3: Dynamic API resolution first appeared on ConsulThink.

]]> Rustware Part 2: Process Enumeration Development https://www.consulthink.it/rustware-part-2-process-enumeration-development/?utm_source=rss&utm_medium=rss&utm_campaign=rustware-part-2-process-enumeration-development Mon, 06 Nov 2023 12:18:11 +0000 https://www.consulthink.it/?p=10303 In the previous blog post we have seen how to develop a Shellcode Process Injection in Rust; the described Process Injection flow relies on several WinAPIs: OpenProcess used to open a handle to the target process, then the VirtualAllocEx was used to allocate a new readable and writable region of memory into the target process, ...

The post Rustware Part 2: Process Enumeration Development first appeared on ConsulThink.

]]> Rustware Part 1: Shellcode Process Injection Development https://www.consulthink.it/rustware-part-1-shellcode-process-injection-development/?utm_source=rss&utm_medium=rss&utm_campaign=rustware-part-1-shellcode-process-injection-development Fri, 27 Oct 2023 12:27:54 +0000 https://www.consulthink.it/?p=10192 Introduction Malware development is essential when performing activities like Red Teaming, Adversary Emulation and Network Penetration Testing, the operator can use custom malwares to perform various tasks based on the specific situation. At the same time, analyzing Malwares is useful to learn how malwares work and how to detect them, in order to defend our ...

The post Rustware Part 1: Shellcode Process Injection Development first appeared on ConsulThink.

]]>