This LOLBIN doesn’t exist…
June 7, 2023 in LOLBins
I have written about Nullsoft installer a few times before. I am a bit fascinated by it, because there is not that much research about it, in general, and even […]
Analyzing nested, obfuscated PHP files…
June 3, 2023 in Archaeology, De-everything, Un-everything, webshell
Many PHP webshells are encrypted, encoded, obfuscated in many different ways, but most use a rudimentary approach relying on engaging the same sequence of code ‘hiding’ routines repetitively, sequences that […]