Shellcode injection is one of the most used defence evasion technique because shellcode is injected into a volatile memory therefore there are no traces left of...

In my early days of malware development and penetration testing, like everybody else I had started by injecting malicious shellcodes into the memory of victim pc to gain access over the C2 server using a popular pen-testing tool called Metasploit framework console. MSF console is a very useful tool for advanced penetration testing if used properly.

it was CVE-2020-40444 MSHTML Remote code execution vulnerability and its attack cycle included Microsoft Word as a victim process that initiates the attack

Cyber reversing is a new term mutually agreed upon at cytomate. Cyber reversing revolves around the practice of reverse engineering for cyber security enhanceme...

On-Disk Detection: Bypass AV’s/EDR’s using syscalls with legacy instruction, series of instructions and random nop instructionsHi everyone, today I am going to...

This blog is about DLL Hijacking and Mock directories techniques to bypass Windows UAC security features and getting high-level privileged reverse shell. Securi...

Analysis of Multi-Stage Windows Trojan: Firefox DLL Hijacking, Keylogging, and Stealth TechniquesExecutive SummaryThis Trojan represents a sophisticated multi-s...

Incident response report — REMCOS RatRemcos RAT is a commercially available Remote Access Tool (RAT) marketed for legitimate use in surveillance and penetration...

In this blog, we discuss the different approaches of AV/EDRs static analysis and detection. Legacy antivirus software was dependent on signature-based de...

Note: This blog is an extension of my previous post, “Arsenal: Bypass EDR’s/XDR’s and make malware analysis harder.” In this follow-up, I explore additional static detection bypass techniques, offering advanced strategies to enhance your toolkit.

In this blog, I am going to explain multiple techniques to bypass AV/EDR/XDR security solutions. As a red teamer and security guy, I always try to explore new m...

Unveiling the Intricacies of AsyncRAT: A deployment in Colombia by the blind eagle cyber groupIntroductionAsyncRAT is a sophisticated Remote Access Trojan (RAT)...

Sarab — Cyber Deception in Action:A Case Study on the December 2023 Iran Gas Station Cyber AttackKey PointsIt seems likely that a recent cyber-attack in the MEN...

In Kuwait, a new wave of cyberattacks is exploiting trust in a chilling way: hackers are using artificial intelligence (AI) to clone voices and send fraudulent voice notes impersonating trusted individuals....

On Monday, April 28, 2025, the entire Iberian Peninsula — covering nearly all of Spain, Portugal, and parts of France — experienced a massive power outage...

This article explores Autonomous Adversarial Intelligence, a new cybersecurity paradigm where AI systems continuously observe attacker behavior, extract intelligence from adversarial interactions, and automatically strengthen defensive systems through detection engineering, attack simulation, and validation.