So I understand that Microsoft digitally signs most of its core executables and you can use tools like Process Explorer to verify if a process is indeed signed by Microsoft. So my question is this:
Is there any way to alter a file, replace it with the valid one but still be able to somehow digitally sign it to avoid detection?
Forum Thread:
When My Kali Linux Finishes Installing (It Is Ready to Boot), and When I Try to Boot It All I Get Is a Black Screen.
8
Replies
Forum Thread:
HACK ANDROID with KALI USING PORT FORWARDING(portmap.io)
12
Replies
Forum Thread:
Hydra Syntax Issue Stops After 16 Attempts
2
Replies
Forum Thread:
Hack Instagram Account Using BruteForce
208
Replies
Forum Thread:
Metasploit reverse_tcp Handler Problem
47
Replies
Forum Thread:
How to Train to Be an IT Security Professional (Ethical Hacker)
22
Replies
Metasploit Error:
Handler Failed to Bind
41
Replies
Forum Thread:
How to Hack Android Phone Using Same Wifi
21
Replies
How to:
HACK Android Device with TermuX on Android | Part #1 - Over the Internet [Ultimate Guide]
177
Replies
How to:
Crack Instagram Passwords Using Instainsane
36
Replies
Forum Thread:
How to Hack an Android Device Remotely, to Gain Acces to Gmail, Facebook, Twitter and More
5
Replies
Forum Thread:
How Many Hackers Have Played Watch_Dogs Game Before?
13
Replies
Forum Thread:
How to Hack an Android Device with Only a Ip Adress
55
Replies
How to:
Sign the APK File with Embedded Payload (The Ultimate Guide)
10
Replies
Forum Thread:
How to Run and Install Kali Linux on a Chromebook
18
Replies
Forum Thread:
How to Find Admin Panel Page of a Website?
13
Replies
Forum Thread:
can i run kali lenux in windows 10 without reboting my computer
4
Replies
Forum Thread:
How to Hack School Website
11
Replies
Forum Thread:
Make a Phishing Page for Harvesting Credentials Yourself
8
Replies
Forum Thread:
Creating an Completely Undetectable Executable in Under 15 Minutes!
38
Replies
How To:
Dox Anyone
How To:
Gain SSH Access to Servers by Brute-Forcing Credentials
How To:
Scan for Vulnerabilities on Any Website Using Nikto
How To:
Find Vulnerable Webcams Across the Globe Using Shodan
Hack Like a Pro:
Using the Nmap Scripting Engine (NSE) for Reconnaissance
How To:
Crack SSH Private Key Passwords with John the Ripper
How To:
Exploit EternalBlue on Windows Server with Metasploit
How To:
Check if Your Wireless Network Adapter Supports Monitor Mode & Packet Injection
How To:
Enumerate SMB with Enum4linux & Smbclient
How To:
Find Identifying Information from a Phone Number Using OSINT Tools
How To:
Use Kismet to Watch Wi-Fi User Activity Through Walls
How To:
Enable Monitor Mode & Packet Injection on the Raspberry Pi
How To:
The Hacks Behind Cracking, Part 1: How to Bypass Software Registration
How To:
Hack WiFi Using a WPS Pixie Dust Attack
How To:
Use Burp & FoxyProxy to Easily Switch Between Proxy Settings
How To:
Brute-Force Nearly Any Website Login with Hatch
How To:
Brute-Force FTP Credentials & Get Server Access
How To:
Use SQL Injection to Run OS Commands & Get a Shell
How to Hack Wi-Fi:
Stealing Wi-Fi Passwords with an Evil Twin Attack
How To:
Find Passwords in Exposed Log Files with Google Dorks
5 Responses
As far as I know, you'd have to get a hold of the private key MS uses to sign their executables. And should that ever happen, you could be sure they'd invalidate it, pronto. You could spoof a signature claiming to be ms, but you'd have to manage to install your own certificate authority on the target's machine. Still, even that would only fool someone reading the cert (not any of the built-in checks).
Makes sense, in either case it sounds like it would be more trouble than it's worth. A different route would be more suitable. Thanks for the response
That's basically the point of certs, just like HTTPS.
The certificates are stored as hashes. NSA has used hash collisions of legitimate Microsoft certificates to digitally sign malicious executables.
OTW: Hmm, so essentially the idea is to have some certs, hash them and use the one that matches. Similar to rainbow tables then, makes sense. Thanks for the reply and for always helping out this forum
Share Your Thoughts