At JUMPSEC we like to give our technical team the latitude to conduct research to further enhance their technical skills problem solving skills and benefit the industry. This research helps us refine our ethical hacking methodologies to enable identification of vulnerabilities that might impact our clients. In this blog post our team has identified and detailed a method for the modification of a shell script written in Golang program available on Github that performed that performs shellcode injection into memory which will efficiently evaded most antivirus programs. The benefit to our clients for this research is to enable a better understand the Hacker mindset, along with uncovering this new and viable attack vector that may have otherwise been overlooked. We are able to add this technique into our SOC automation process in order to identify and defeat these attacks in the future.
To learn more from a technical point over view visit JUMPSEC labs.