Red Team | ConsulThink https://www.consulthink.it IT consulting Tue, 19 Mar 2024 14:52:22 +0000 it-IT hourly 1 https://www.consulthink.it/wp-content/uploads/2020/02/logo-icon-87x87.ico Red Team | ConsulThink https://www.consulthink.it 32 32 Azure Security Assessment https://www.consulthink.it/azure-security-assessment/?utm_source=rss&utm_medium=rss&utm_campaign=azure-security-assessment Tue, 19 Mar 2024 14:47:20 +0000 https://www.consulthink.it/?p=10497 Nell’ultimo decennio l’industria del cloud computing è stata interessata da una crescita esponenziale. Secondo Exploding Topics, dal 2015 ad oggi la quantità di dati aziendali gestiti e mantenuti in cloud è raddoppiata, fino a raggiungere circa il 60% della totalità delle informazioni corporate. In particolare, circa il 22% del mercato cloud appartiene a Microsoft Azure, ...

The post Azure Security Assessment first appeared on ConsulThink.

]]> Rustware Part 2: Process Enumeration Development https://www.consulthink.it/rustware-part-2-process-enumeration-development/?utm_source=rss&utm_medium=rss&utm_campaign=rustware-part-2-process-enumeration-development Mon, 06 Nov 2023 12:18:11 +0000 https://www.consulthink.it/?p=10303 In the previous blog post we have seen how to develop a Shellcode Process Injection in Rust; the described Process Injection flow relies on several WinAPIs: OpenProcess used to open a handle to the target process, then the VirtualAllocEx was used to allocate a new readable and writable region of memory into the target process, ...

The post Rustware Part 2: Process Enumeration Development first appeared on ConsulThink.

]]> Rustware Part 1: Shellcode Process Injection Development https://www.consulthink.it/rustware-part-1-shellcode-process-injection-development/?utm_source=rss&utm_medium=rss&utm_campaign=rustware-part-1-shellcode-process-injection-development Fri, 27 Oct 2023 12:27:54 +0000 https://www.consulthink.it/?p=10192 Introduction Malware development is essential when performing activities like Red Teaming, Adversary Emulation and Network Penetration Testing, the operator can use custom malwares to perform various tasks based on the specific situation. At the same time, analyzing Malwares is useful to learn how malwares work and how to detect them, in order to defend our ...

The post Rustware Part 1: Shellcode Process Injection Development first appeared on ConsulThink.

]]> iOS Strings Obfuscation in Swift https://www.consulthink.it/ios-strings-obfuscation-in-swift/?utm_source=rss&utm_medium=rss&utm_campaign=ios-strings-obfuscation-in-swift Wed, 17 May 2023 10:36:12 +0000 https://www.consulthink.it/?p=9985 Introduction Usually when reversing an iOS Application, it’s common to see methods and strings that can help an attacker to figure out how the application works. When I’m looking for jailbreak detection mechanisms, I usually start to search for strings and functions containing the word “jailbr  (jail, jailbreak or jailbroken) or “root”. If I’m not lucky with these method names, ...

The post iOS Strings Obfuscation in Swift first appeared on ConsulThink.

]]>