Differences
This shows you the differences between two versions of the page.
en:it-security:blog:obfuscation_polymorphic_in_memory_decoder [2024/09/23 10:51] – created psycore | en:it-security:blog:obfuscation_polymorphic_in_memory_decoder [2024/09/23 11:03] (current) – psycore | ||
---|---|---|---|
Line 268: | Line 268: | ||
The XOR decoder provides effective memory protection. In combination with other obfuscation techniques, this can be a good helper for penetration tests. During my test, even the Metasploit payload was not detected by Windows Defender. | The XOR decoder provides effective memory protection. In combination with other obfuscation techniques, this can be a good helper for penetration tests. During my test, even the Metasploit payload was not detected by Windows Defender. | ||
+ | |||
+ | ~~DISCUSSION~~ |