Welcome to UnHaxed█

Modern EDRs hunt for explicit remote threads. This post explains (conceptually) how to leverage TP_TIMER callbacks for stealthy code injection without calling CreateRemoteThread.

Implementing accurate darts scoring using vector registers and conditional branches.

Modern EDR systems flag threads starting in unbacked memory. This post demonstrates how to use ROP gadgets in legitimate DLLs to execute shellcode.

Ever wondered how a simple RTF document can completely compromise a system? Let's tear apart a real-world, obfuscated CVE-2017-11882 exploit that uses dynamic encryption, shellcode obfuscation, and some seriously clever evasion techniques to deliver its payload.

A deep dive into x86-64 assembly programming: implementing the Collatz Conjecture with performance optimizations.

A hands-on walkthrough of writing your first x64 assembly programs with MASM—no abstractions, no shortcuts. Just raw console output using the C runtime and Windows API.

Proofpoint researchers uncovered a malware campaign delivering a payload named after none other than 'Voldemort'—the malware that must not be named! Let's dive into how we can use Dumpulator and IDA scripting to reveal its secrets.