Malware-Dev

Steganography is the practice of hiding data inside something that looks completely normal. Unlike encryption, which makes data unreadable, steganography makes data invisible. On a red team engagement, that distinction matters. Encrypted traffic gets flagged. A PNG image of a cat sitting on a keyboard? Nobody looks twice. I built stego-drop to explore this concept hands-on: a Python tool that embeds binary payloads (shellcode, scripts, whatever you want) into PNG images using Least Significant Bit encoding. In this post I’ll walk through how LSB steganography works, how I built the tool, and how to use it. ...

Introduction A PE (Portable Executable) file is the format Windows uses for executables (.exe), DLLs (.dll), and other binary files. If you want to understand how Windows works under the hood, whether for malware analysis, reverse engineering, or offensive security, understanding PE structure is essential. In this post, I’ll walk through building a PE parser from scratch in C, explaining each component along the way. What is a PE File? Every time you run a program on Windows, the OS loader reads the PE file and maps it into memory. The PE format tells Windows: ...