[Malware Guide | r/TechSupport Wiki](https://rtech.support/docs/safety-security/malware-guide.html) [GitHub - alichtman/malware-techniques: A collection of techniques commonly used in malware to accomplish core tasks.](https://github.com/alichtman/malware-techniques) [GitHub - LordNoteworthy/al-khaser: Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.](https://github.com/LordNoteworthy/al-khaser) ## history [A Mini-Documentary I made on "The Origins of The Computer Virus" : hacking](https://old.reddit.com/r/hacking/comments/pcplfy/a_minidocumentary_i_made_on_the_origins_of_the) ## payloads [swisskyrepo/PayloadsAllTheThings: A list of useful payloads and bypass for Web Application Security and Pentest/CTF](https://github.com/swisskyrepo/PayloadsAllTheThings) [Payloads All The Things](https://swisskyrepo.github.io/PayloadsAllTheThings/) [payloads](https://github.com/foospidy/payloads) git all the Payloads! A collection of web attack payloads. [austinsonger/payloadsandlists: Payloads and Lists](https://github.com/austinsonger/payloadsandlists) [command-injection-payload-list](https://github.com/payloadbox/command-injection-payload-list) command injection payload list. [Webshells](https://dfir.it/blog/2015/08/12/webshell-every-time-the-same-purpose/) great series about malicious payloads. ## exploits [/r/pwned](https://www.reddit.com/r/pwned/) data breaches, site defacements, rm's, hack logs [/r/NSALeaks](https://www.reddit.com/r/NSALeaks/) everything about NSA leaks, news from Edward Snowden or governmental abuses [Is this the biggest password leak ever uncovered? Researchers claim nearly 10 billion credentials under threat — here's what we know so far | TechRadar](https://www.techradar.com/pro/is-this-the-biggest-password-leak-ever-uncovered-researchers-claim-nearly-10-billion-credentials-under-threat-heres-what-we-know-so-far) ## malware code [Malwares for research purposes](https://old.reddit.com/r/hacking/comments/16a0gcu/malwares_for_research_purposes/) ## malware vs uninstallers [Any sufficiently advanced uninstaller is indistinguishable from malware | Hacker News](https://news.ycombinator.com/item?id=37491862) [Any sufficiently advanced uninstaller is indistinguishable from malware - The Old New Thing](https://devblogs.microsoft.com/oldnewthing/20230911-00/?p=108749) ## polymorphic malware [Black Mamba - Proof of Concept Polymorphic Malware : cybersecurity](https://old.reddit.com/r/cybersecurity/comments/11vo7go/black_mamba_proof_of_concept_polymorphic_malware/) ## sandboxing malware [Is sandboxing potentially malicious software in a VM safe enough to keep the host system safe? : hacking](https://old.reddit.com/r/hacking/comments/pkzule/is_sandboxing_potentially_malicious_software_in_a) ## avoiding malware [How to Avoid Malware Guide](https://www.reddit.com/r/Piracy/wiki/browsing_and_downloading_guide) ## malware analysis [How to start RE/malware analysis?](https://hshrzd.wordpress.com/how-to-start/) collection of some hints and useful links for the beginners. ## specific CVE [CVE-2022-41924 - tailscaled can be used to remotely execute code on Windows | Hacker News](https://news.ycombinator.com/item?id=33695886) [CVE-2022-41924 - RCE in Tailscale, DNS Rebinding, and You](https://emily.id.au/tailscale) [CVE-2022-21894: Windows 11's Secure Boot Defeated by BlackLotus Malware (CVE-2022-21894)](https://www.darkrelay.com/post/windows-11-s-secure-boot-defeated-by-blacklotus-malware-cve-2022-21894)