MalDev Academy
@MalDevAcademy
A comprehensive module-based malware development course providing fundamental to advanced level knowledge
The Offensive Phishing Operations Course has been released. 81 modules are included in the initial launch, with the first update already being worked on. More information: maldevacademy.com/phishing-course Syllabus: maldevacademy.com/phishing-cours…
Update 18 is now available: maldevacademy.com/syllabus - Introduction To LSASS Dumping - Fetching LSASS Handle And Bypassing PPL - LSASS Dump Via Duplication - LSASS Dump Via RtlReportSilentProcessExit - LSASS Dump Via Seclogon Race Condition
New course update coming this month: - Introduction To LSASS Dumping - Fetching LSASS Handle And Bypassing PPL - LSASS Dump Via Duplication - LSASS Dump Via RtlReportSilentProcessExit - LSASS Dump Via Seclogon Race Condition
All main modules of the Malware Development Course are now available for download in Rust. Huge shout out to @5mukx for helping out on this project.
Offensive Phishing Operations update: maldevacademy.com/phishing-cours… - MFA Bypass: Building An Invisible Proxy - Invisible Proxy: Opsec Considerations - MOTW Bypass Via FileFix Variations (Covers two new MOTW bypasses methods) Huge shout out to @cgomezz_23 for his help with this…
Offensive Phishing Operations - ClickFix: Run Dialog Alternatives Utilizing Windows Search and WebDAV to trick the user into unknowingly executing a remote binary.
Coming soon to the Offensive Phishing Ops course: Building a custom invisible proxy in Express, downgrading MFA, opsec considerations (e.g. blocking canaries, setting user agent), and integrating custom anti-bot checks into the setup.
Offensive Phishing Operations Course update released: maldevacademy.com/phishing-cours… - Introduction To ClickFix - ClickFix: Run Dialog Alternatives - Anti-Analysis Via Reverse DNS Query - Anti-Analysis Via Invisible Encoding
My honest review of @MalDevAcademy. This is one of the best courses I’ve ever taken. Their modules are engaging, well-structured, and packed with valuable insights. I have pretty locked in on the modules for a while. The structure has completely transformed how I approach writing…
Offensive Phishing Operations update next week: maldevacademy.com/phishing-cours… - Introduction To ClickFix - ClickFix Without Run Dialog - Anti-Analysis Via Reverse DNS Query - Anti-Analysis Via Unicode Characters
Maldev Database updated search.maldevacademy.com/updates Some of the newly added snippets include: - Anti-Analysis Via Self-Deletion (Windows 11) - Anti-Analysis Via Self-Deletion (2) (Windows 11) - Running VBScript code in memory - Screen Capture to BMP (ScreenShot) - Sleep Obfuscation…
Coming soon: Searching the Maldev Database directly from the course interface.
👑 They doubted my vision, now they witness our ascension. ⌛️ Coming Soon... 🚀 Guided Hacking's Anticheat Development Course
Offensive Phishing Operations Update 2 Released: maldevacademy.com/phishing-cours… - HTML Smuggling Strategies - Analyzing and Evading SmuggleShield (S/O @RandomDhiraj) - Integrating Anti-Bot With HTML Smuggling - SVG Smuggling - WebAssembly Smuggling
Utilizing our previously discovered registry key to hook LSASS's SamIGetUserLogonInformation2 API and capturing plaintext login credentials. github.com/Maldev-Academy…
Maldev Database - May update search.maldevacademy.com/updates
I've just completed the @MalDevAcademy Malware Development Course. The course presents modern techniques for bypassing security solutions, low-level development and evasion. I would totally recommend this course to Red Team operators requiring a high level of discretion!
You can check out @MalDevAcademy. They offer excellent malware techniques, and the course is designed in a way to make you progress from easy to advanced. Which is actually good and makes beginners to understand ! .
Loading a DLL into lsass.exe by editing a registry key value: github.com/Maldev-Academy…
