Virus - lclee_vx artworks                                                                                                    

1. Win32 Virus Run in Ring3

2. Scan Win32 API Functions

3. Scan Win32 API Funtion with Checksum

4. Oligomorphic Virus - Win32.Cleevix

5. W32.Ceel.a

6. Retrieve Kernel32.dll Address

7. My First Testing Virus on Linux - lychan

8. How to run the Honeytrap in Vmware [Link]

9. Virus Demo [Virus Binary] [Host File] [Report URL] [Screenshot]

    This is just the virus demo. Download the Host file (original file), and Virus binary file and put both binary files in

    same directory and execute its. You will notice the different of the Host file. Please test it in vmware environment

    becoz I dont take any responsibility if the files destroy your pc.

10. Comparison File Infection on Windows and Linux Platform, DEFCON 16 [Download] 

Virus - Other members Artworks

1. Monalisa      - (Author : Moaphie)

2. W32.nippy   - (Author : Moaphie)

3. Simple Virus - (Author:Evil) [Source] [Binary]

                    - Note:Copyright reserved to Evil and Doom Riderz Issue #1

4. Virtu - Example of polymorphic virus [Download] [View]

5. Virus - wZT [View]

Virus - Tutorials/Etc

1. How AVP (Antiviral Toolkit Pro) Scanning in Memory for viruses

2. Get da Kernel Base Via Harcoding in Win32

3. Another Method to travel directory downwards in Win32

4. Compare the assembly language on the windows & Linux

5. First E-zine from eof-project (Virus group)

6. Virus Sampel QQLiveUpdate - (Provided by Robinh00d, Password=f13labs)

7. The art of Assembly Language - This is the most complete tutorial (Online) of assembly language

8. PE format - Download from Microsoft Website, you need to understand the PE first before you code virus :p!!

9. How to Implement Anti Debugging [Binary] [SourceCode]

   Note: If you double Click the binary files, the exe will running normal and pop up the message with right answer.

           But the exe file will try to block the debug/reverse process, try debug with OllyDbg or IDA Pro.

10. Virus Analysis of Idoneus [View]

11. Static Analysis of Executables to Detect Malicious Patterns [View] [URL]

     Note: The excellent paper in Analysis of Malicious Code

12. Practical Malware Analysis [View]

13. Documentation - PE / PE32+ / CLR / ELF / OMF / etc - Format [View]

     Note: Collections of all the file format, its very important if you wanna code the virus on other platform such as

              Linux platform.

14. Win32/Xorer Sampel [Download] [Password=f-13labs]

     Note: Please noted that it's virus sampel and will harm/destroy your pc if you direct run on your real environment.

15. Collection of 100 virus source code [Download 1] [Download 2] [Download 3] [Download 4]   

16. NetSky Worm SourceCode [Download]      

17. Bios Rootkit [Download] [Change the file extension from *.raq to *rar and extract with winrar software.   

Rootkits

1. Unreal Rootkit Binary file [Download] [URL]                                                           

   Please noted that you take your own responsibility if the exe file crash your PC.

2. URL for learning rootkit [Link]

3. Debugging Tools for Windows Package [URL]

   LiveKd [Download] [HelpFile]

4. An overview of Unix Rootkit [View]

5. Collection - Windows Kernel [download]

    Note: The articles and papers related to kernel.

6. My notes when study the code of kmdtutorial [view]

7. Collection of the Driver Loader Tool [Download]

    a. InstDvr

    b. KmdManager

    c. OsrLoader

    Note: These tool are useful when you test your own rootkit program / Driver

 

 

 

/News

/Virus

/Virus Hibernate

/Miscellaneous

/Tools

/Members Info

/Links

/Guestbook

/Gathering

 

 

 


Copyright (c) 2005 F-13 Labs. All rights reserved.