RedTeam
5.Machine
3.Active-Directory
General
Exploitation
AV-Detection-and-Evasion
Evasion-Techniques
General

On disk Evasion Technique

  • Obfuscation Obfuscation refers to the process of concealing something important, valuable, or critical. Obfuscation reorganizes code in order to make it harder to analyze or RE.

  • Encoding Encoding data is a process involving chnaging datat into a new format using a scheme. Encoding is a reversible process; data can be encoded to a new format and decoded to its original format.

  • Packing Generate executable with new binary structure with smaller size ad therefore provides the payload a new signature.

  • Crypters Encrypts code or payloads and decrypts the encrypted code in memory. The decryption key/function is usually stored in a stub.

Evasion Technique Cheat Sheet

Cheat Sheet ---> https://attack.mitre.org/ (opens in a new tab)

Signature Based DetectionEvasion Invoke Obfuscation