Dropper Analysis: Stage 0 → Shellcode
Reversing a multi-stage dropper: XOR-encrypted stage-1, reflective PE loader, final shellcode execution.
2 docs tagged with "shellcode"
View all tagsShellcode 101 — Position-Independent Code from Scratch
Writing position-independent shellcode in x64 NASM: PEB walking, API hashing, and avoiding null bytes.