You're reading from Malware Development for Ethical Hackers Learn how to develop various types of malware to strengthen cybersecurity

Product type Paperback

Published in Jun 2024

Publisher Packt

ISBN-13 9781801810173

Length 390 pages

Edition 1st Edition

Concepts

Cybersecurity

Author (1):

Mr. Zhassulan Zhussupov

View More author details

Table of Contents (23) Chapters

Preface

1. Part 1: Malware Behavior: Injection, Persistence, and Privilege Escalation Techniques FREE CHAPTER

2. Chapter 1: A Quick Introduction to Malware Development

3. Chapter 2: Exploring Various Malware Injection Attacks

4. Chapter 3: Mastering Malware Persistence Mechanisms

5. Chapter 4: Mastering Privilege Escalation on Compromised Systems

6. Part 2: Evasion Techniques

7. Chapter 5: Anti-Debugging Tricks

8. Chapter 6: Navigating Anti-Virtual Machine Strategies

9. Chapter 7: Strategies for Anti-Disassembly

10. Chapter 8: Navigating the Antivirus Labyrinth – a Game of Cat and Mouse

11. Part 3: Math and Cryptography in Malware

12. Chapter 9: Exploring Hash Algorithms

13. Chapter 10: Simple Ciphers

14. Chapter 11: Unveiling Common Cryptography in Malware

15. Chapter 12: Advanced Math Algorithms and Custom Encoding

16. Part 4: Real-World Malware Examples

17. Chapter 13: Classic Malware Examples

18. Chapter 14: APT and Cybercrime

19. Chapter 15: Malware Source Code Leaks

20. Chapter 16: Ransomware and Modern Threats

21. Index

Why subscribe?

22. Other Books You May Enjoy

Mastering API hooking techniques

In this section, we’ll dive into API hooking techniques and provide practical examples.

What is API hooking?

API hooking is a method that’s used to manipulate and alter the functionality and sequence of API calls. This technique is frequently used by different antivirus (AV) solutions to identify whether a given piece of code is malicious.

Practical example

Before hooking Windows API functions, it is essential to consider the scenario of using an exported function from a DLL.

This section will provide an illustrative instance of this wherein a DLL is used that contains the logic at https://github.com/PacktPublishing/Malware-Development-for-Ethical-Hackers/blob/main/chapter02/04-api-hooking/pet.cpp.

The DLL under consideration exhibits a set of basic exported functions, including Cat, Mouse, Frog, and Bird, each of which accepts a single parameter denoted as message. The simplicity of this function’s logic is evident...