Differences
This shows you the differences between two versions of the page.
| en:it-security:blog:obfuscation_polymorphic_in_memory_decoder [2024/09/23 10:51] – created psycore | en:it-security:blog:obfuscation_polymorphic_in_memory_decoder [2024/09/23 11:03] (current) – psycore | ||
|---|---|---|---|
| Line 268: | Line 268: | ||
| The XOR decoder provides effective memory protection. In combination with other obfuscation techniques, this can be a good helper for penetration tests. During my test, even the Metasploit payload was not detected by Windows Defender. | The XOR decoder provides effective memory protection. In combination with other obfuscation techniques, this can be a good helper for penetration tests. During my test, even the Metasploit payload was not detected by Windows Defender. | ||
| + | |||
| + | ~~DISCUSSION~~ | ||