Revere engineering, also called back engineering is the process by which a man-made object is deconstructed to reveal its designs, architecture, or to extract knowledge from the object. In reverse engineering, there are 5 major steps. Software reverse engineering is the process of discovering the technological principles of a system…

Executable files execute code or a series of instructions contained in the file. The Portable Executable (PE) format is a file format for executables in Microsoft Windows. The PE format is used by Windows 95 and higher, Windows NT 3.1 and higher .exe is a common filename extension denoting an…

According to current technology era, there are mainly 3 types of backdoor patterns at the application level. Hard-Coded Credentials These backdoors are creating by hard coding credentials like usernames, passwords, logics, secret keys, and IP/URLs are in the source code. Most of the time lazy developers add hard-coded administration/master usernames and passwords…

Alternative Data Stream (ADS) support was added to NTFS (Windows NT, Windows 2000 and Windows XP) to help support Macintosh Hierarchical File System (HFS) which uses resource forks to store icons and other information for a file. ADS provide the ability to put data into existing files and folders without…

Random-Access Memory (RAM) is a volatile form of computer memory that can be read and changed in any order, typically used to store working data and machine code. A computer’s RAM stores data for short-term use. RAM works in conjunction with the hard drive, which takes care of long-term storage…