Malware Development (looking for a mentor, resources)

Hi all

As the title says I’m looking for a mentor/resources in malware development and malware analysis, I know there is a lot of resources out there which I can get by googling, but I was just wondering if there are any resources you guys would 100% recommend. Thanks.

4 Likes

Hey man how’s it going. Let me be honest I encountered this same issue as well for malware development.
Something I do recommend you take a look at is C/C++ Programming the choice is honestly up to you when looking for some basic resources I went for some Udemy courses but then also some free ones Tutorialspoint to be exact then jump on to some codeacademy but very light, also get a look at some malware development by someone in this forum

Once done, the choice of Debugger it actually comes up to you, take a look at a few and play around or mess with some tutorials and find out which one is great for you. I sometimes use WinDBG or Ghidra I am not really familiar with this area but those are usually the ones I get help with. Ad some RE well I heard IDA is great and always see it hard on twitter.

Good Luck!!

7 Likes

Hey man, thanks for your reply!
Yeah I already started with C programming since I have experience with programming in C++ and python I made some programs for myself to solve some problems for myself but now I got really interested in malware analysis and malware development.
Thank you for your suggestions I will definitely check them out!
Have a good one and thanks again!

1 Like

Hi guys
I’m particularly interested in writing Windows malware in C/C++. It is very important that you not only understand at least the basics of the language, but also the low level intricacies of the operating system meaning undocumented APIs, etc. To that end, I would recommend the following books (all available online):

  • Charles Petzold - Programming Windows: super old ('98) but explains the Win32 api step by step and very clearly, and this still works below even to the latest windows versions. I skipped all the obsolete GUI chapters though.
  • Windows Internals 7th ed: this edition is 2021, very good and thorough
  • Windows kernel programming: 2019, even deeper windows crap. Both these books are by Pavel Yosifovich et al., look him up he’s a very renowned expert on Windows system programming

Best of luck

2 Likes

Secktor7 has cheap courses for this very topic. Force yourself to use windbg (the preview might not work on some setups), doing so will help you later on. Other people have brought it up but do some game hacking, follow some of the guides here or go to guided-hacking for material related to that. LiveOverflow has cool videos on the same topics. Then from game hacking go write your own static loaders, understand anonymous function pointers, create a dynamic reflected loader, create your own binary packer, modify UPX, write some shellcode and use Donut/Scarecrow 3.0.

Phrack, Zerosum0x0, Uniformed, Paged Out, VX-Underground, Valhalla, PoC||GTFO, secret.club

Reversing malware is the pinnacle of modern research, unless you do application security and create the 0-days. So I would recommend you follow suit.

The options are limitless when you want to do development. Just start looking shit up mang :wink:

10 Likes

thank you for your reply!

nice, thank you for your reply and resources I appreciate it, I would like to contact you if I have any more questions if that’s okay

The forum is a very good intro!!!

1 Like

Hey, man happy to hear that you are interested in mal dev here i got something for you.
rootkit-io/malware-and-exploitdev-resources (github.com).

4 Likes

I recommend Windows via C++ to learn about Windows internals and how things works: Windows Via C/C++ (Developer Reference (Paperback)) : Richter, Jeffrey, Nasarre, Christophe: Amazon.de: Books
After you know how your target OS works, it’s similar to any programming task

1 Like

Hello everybody, and thanks for letting me join this forum!

I cant seem to understand how to make a new topic in the malware section (maybe because of my user level?), so I’m posting here.

My goal is to create a RAT in c++ with various tools, like keylogger, file transfer, remote desktop etc.
I don’t have any previous experience with coding, but I am 100% committed on learning how to make this kind of tools.

I learned spanish and russian relatively easily, so I hope I will have a fair chance at this programming language as well.

Lately I have been studying a lot to try to get a basic understanding of the language.
I have been watching hours and hours of youtube courses, taken udemy courses and done basic c++ programming examples.
And yesterday I followed a youtube guide and managed to get a connection on my computer between a barebones server and client.

But now I am a little stuck : As I want many clients to be able to connect to my server at the same time.
And then I can choose what client to connect and interact with.
I have found out that the select() command is best for this type of server, but I think it is really difficult at this point.

So I am looking for a mentor as well!
I am not begging for someone to do everything for me, I just want some guidance from time to time.
Someone to tell me what to study next, and point me in the right direction.

Some help would be greatly appreciated!
I don’t know if its possible to send private messages on this forum, but it would be nice to be friends on Discord or jabber.

Thanks a lot in advance!

Sincerely me :))

In startup you need to first clear the concepts like how antivirus works and all that. you can read this paper.

2 Likes

Thank you!
I will read it :slight_smile:

Any chance you can link a pdf in here of this paper, because it requires payment to read the full version.

ajayrandhawa (Ajay Randhawa) · GitHub may be some of my application help you

This topic was automatically closed after 121 days. New replies are no longer allowed.