21 lines
799 B
Markdown
21 lines
799 B
Markdown
|
|
||
|
## On disk Evasion Technique
|
||
|
|
||
|
- **Obfuscation**
|
||
|
Obfuscation refers to the process of concealing something important, valuable, or critical. Obfuscation reorganizes code in order to make it harder to analyze or RE.
|
||
|
|
||
|
- **Encoding**
|
||
|
Encoding data is a process involving chnaging datat into a new format using a scheme. Encoding is a reversible process; data can be encoded to a new format and decoded to its original format.
|
||
|
|
||
|
- **Packing**
|
||
|
Generate executable with new binary structure with smaller size ad therefore provides the payload a new signature.
|
||
|
|
||
|
- **Crypters**
|
||
|
Encrypts code or payloads and decrypts the encrypted code in memory. The decryption key/function is usually stored in a stub.
|
||
|
|
||
|
|
||
|
## Evasion Technique Cheat Sheet
|
||
|
|
||
|
Cheat Sheet ---> https://attack.mitre.org/
|
||
|
|