Null offensive hacking hands-on training.

Proposed sessions for this event:

• Writing Malware for Fun and Profit Day - 1 by Adhokshaj Mishra
• Writing Malware for Fun and Profit Day - 2 by Adhokshaj Mishra

Writing Malware For Fun and Profit

1. Introduction
   -> Definition of malware
   -> Types of malware

2. Remote Administration Toolkit (RAT)
   -> Components of RAT
   -> Common features of RAT
   -> Command execution
   -> File browsing
   -> File transfer

3. Introduction to Network Programming
   -> TCP/IP and UDP/IP
   -> Ports and sockets
   -> Writing an echo server
   -> Writing a basic chat server
   -> Handling multiple clients
   -> Using encrypted protocols
   -> Chat server using TLS

4. Command-Line Shell
   -> Spawning a process
   -> fork and execve
   -> popen
   -> Terminating child processes
   -> Capturing console output
   -> Maintaining shell state

5. File Browser
   -> Filesystem basics
   -> Iterating over files and directories
   -> Reading/writing file metadata
   -> Managing filesystem permissions

6. Spying on system
   -> Hooking function calls
   -> Hooking filesystem functions
   -> Hooking network functions
   -> Loading and unloading the hooks
   -> Limitations

7. Maintaining persistence
   -> User level persistence
   -> using cron
   -> using profile
   -> System level persistence
   -> using systemd
   -> using global hooks
   -> Global mutexes, and locking

8. Hiding the tracks
   -> Hiding malware binary
   -> Hiding dropped payloads
   -> Hiding network connections

9. Malware plugins
   -> Writing a basic plugin engine
   -> Managing plugins at runtime
   -> Writing plugins

10. Wrapping everything up

PREREQUISITES:
-->Conditionals, loops,inheritence, functions, classes, structures, file I/O in C & C++