How Hackers Write Malware & Evade Antivirus (Nim)

Never said "Don't try this at home" or "Only for educational purposes". My hero.

I somehow always get motivated to program my own projects when watching your videos XD

I love how Ed Sheeran is teaching me how to write a malware lol

When John says "I know this video is already getting long" and you are like "huh? keep going cause this is really interesting"
Dont cut your videos short because you think we might be getting bored. This is awesome stuff! I would LOVE to see a longer video on this. Im a red teamer so building custom malware is something I really want to start playing with.

Dude, I like how you cover so much material in such a efficient time, I really appreciate it!

I was about to skip the ad but stuck around when I heard the names. That looks like a solid platform.

When I learn a new programming language I write "What's up bitches?!" Instead of "Hello World."

i wonder if anti-social people actually writes "Hello World!" or if they write "Just you wait motherfuckers...."

Its things like this that got me into computers as a child in the 80s. There was like this secret world of PCs that the casual user never would experience. Whether it was just pirating software or hacking into networks it made you feel like absolutely anything is possible you just had to acquire the knowledge for it. Even to this day with how streamlined the modern PC experience is there is still a hidden world filled with programs and operations that even a well versed daily PC user has no clue they exist and I absolutely love it!

Even thought the creators of the language said in their forum "please don't create malware with Nim" ... thanks for the video. It's nice when the language gets some attention. It is very nice, especially for the people who love Python.

Finally, Nim will be shone into light. Great video, even though Nim don't endourse making malware with it 😂

Nim is such a great language! The syntax of Python and the speed of C

I’ve been studying exploit dev for the last month or so, I already have programming experience and work in cyber. I picked up Maldev Academy yesterday, and feel like it is going to give me a years worth of experience in just a couple weeks by how in-depth it is. It’s expensive, but I justified the cost by thinking about how many hours I’d spend researching to find all of the same info. The framework they give you for learning maldev is amazing.

Awesome video, man! Keep up the great work :)

I have been wanting to learn NIM for a while. I might try to use it for my upcoming OSEP (I know that they want me to use python and C# but I don't think it matters.).

Hey Johny ! I like that the way you teach something, you Rock dude 🤘

Thanks John, great video👍!
I just love the Nim language.

Him: we gonna see how we can write malware
Me: print("malware")

I wish you could create a series of Nim focused on offensive and defensive tools.

with a thumbnail like that who could resist clicking 🙃

Dude I love your content. You go very deep with basic language that takes me step by step. Good job and keep up the hard work :).
Just want to ask you, why don't you make videos about cloud security. I know it is a massive topic, and I would love watching more about it, especially from you.

make android notepad. ask all permission. read contacts sms gallery send internet to your server. user installed accept all permissions even notepad not need

Not watching to learn how to do but to understand how it’s done 😌

Writing malware is easy. In an airgapped network, deploy AV, EDR, and IPS+IDS to a couple of VMs and at a gateway. That takes maybe 1 day. Now you have a lab. Write custom malware, deploy, and see what gets caught. Don't even need to be complicated malware, just basic functions that do what you want it to do. Now, be creative in how you obfuscate its code and operations. Live off the land. On one red team, I got Mimikatz to slip right past their EDR simply by prefixing the PowerShell with 200 MB of comments. It's too large to analyze, so the EDR didn't bother. A few months ago, I got a basic reverse shell to work by having the code hide itself in new LNK files that pulled the rest of the code from environment variables.

Hey big fan of yo man (Cyber Security Student)

I'm not a fan of malware (for obvious reasons), but if people will start learning Nim because of it, maybe they will see all that's good about Nim outside of it's offensive application. Good Video, as usual.

God and jesus Nazaret want our technology hacker.

This is my first time hearing about this nim it’s syntax looks a little similar to python, tnx for this interesting tutorial

Am I the only one who think John needs to do a tutorial series on Sublime text? 😂

In Iran we should work 2 or 3 month for achieving 250$ for starter plan of maldev academy. sadly.

A malware for many is a goodware for someone else :D

What’s the limit of this applications applicability? How can you use this method to install data gathering, keystroke loggers, and zombies?

500$ hahahahaha

Okay, Why?

MALWARE IS DIFFERENT FROM
" CAMOUFLAGING " S'YANGA PLA !

Attack
Defense
Cares
Bypass
Gbg
Rid
Dumpbred
GST CTF rooms open
Story market CTF rooms open

Nope I never write or wrote hello world because am not boring

Yeah yeah yeah, give us your money and we will make you malware developer 😂😂😂 omg. Never knew that's so simple. Where is my wallet, hurry, I must take this Academy 😅🙈

Please make more Nim content

Noice

The windows api sucks, just look at what its types resolve to and their function definitions in the dll's assembly version and then you could get an idea of how to do this on your own

I have one question Why Nim ? Does this language have any special qualities ?

I know how to Type Marvel its Just
"Malware" LOL

Have discount for a brasilian? Dollar is to much expensive

dang, just paid for maldev academy after seeing your tweet, 2 days before this 10% off dropped 🤦

If this is allowed here, it's bc newest antimalware solution can detect it.

NimGang!

Seeing from the comments I can see anybody has no idea how to evade anti viruses really. So here is a hint Obfuscation is the key... we encrypt the strings compress them... And Change methods name into random string arrays, adding dummy codes, masking data... etc. Thats the most basic. The advanced obfuscation requires subjects like anti debug and anti tampering the most important of all inventing your own compression algorithms...

FR: Bonjour... oui... la police... c'est pour signaler un homme ! Qu'a-t-il fait ? C'est un hacker ! 0_ 0
EN: Hello... yes... police... this is to report a man ! What did he do ? It's a hacker ! 0_ 0

To be honest a bit costly if you see the life time plan if compared with TCM Malware analysis course... Not complaining about the course content.

Can some one teach me how to make a malware or how can I put the code of the malware

If I write a good App, it feels good to know it's out there providing values to end users. If I spend same amount of time writing a piece of malware, then it gets patched, as if never existed, it'll be feelsbadman. So, I don't know... Cool knowledge though.

After heavily squinting my eyes I wanna tell you that that microsoft doc site has a dark theme when you scroll to the very bottom, on the left side

Teach learning privat mr you succes

I have made a couple pieces of "EDUCATIONAL USE" Malware on Android and Windows. I try to make funny malware.

First

lol, I don't know why but hearing anyone talk about this stuff (MalDev) enthusiastically from _this_ perspective is funny to me.
I've learned all those things over the years for completely different reasons, in modifying games I encounter lots of stupid anti-debug tricks and have to learn the same craft as malware authors to circumvent the anti-debug surrounding a lot of games DRM. I don't even have any interest in pirating games, but that shit gets in the way 😕

Maldev Academy is quite exoensive

Dude, how much coffee do you drink???

No matter what anybody says, videos about hacking/pentesting are always going to be used maliciously, and the knowledge is going to be exploited.

Are most malwares made for Windows environment?

DISCONNECT BAKA KUNG ANO
YAN ! IKAW BAHALA ! _PANALIGAN

Hello brother, greetings from Argentina.
golang vs rust, for pentesting or red team?

Step 1.) Learn voltage manipulation

how many will learn to make malware for your computer?

you can learn all this for free unless you just want the shiny cert that no employer is asking for just like every other online course.

Nim is a new programming language for me, but maybe i should check that.

just increase the file size of the infected program goes undetected every time. on all windows based systems

use c/c++

12:38 isnt NULL = 0? Correct me if i'm wrong but i think that NULL is just 0

In my opinion anybody who is writing malicious code for the purpose of distributing, misleading and/or causing harm, should be considered and tried as a terrorist and do at least 25 to life prison sentence.

First: do not use common required APIs, use something exotic that does same work. Make malware work slowly, do not trigger suspicious behavior. All that usual stuff is tracked by AV software, so do not use it. Use some zero day exploit, do not mass stuff, do slow polymorphic or metamorphic code encryption. But best way: if you can do all of it find legal job, get money there.

*yawn* this is so old. I had my " malware phase " like 20 years ago.

really want to finish OSEP so i can start modernising my tradecraft with nim, I really don't like Visual Studio + CSharp

I'm at if nothing on the internet can be trusted, I'm currently using a disposable phone anyway.

How are you guys able to subscribe to academies like maldev

i didn't write hello world in my life,, i always write Test1

John that service is over $200 dollars! I still am looking for work since Aug. 02.

I feel like my fbi agent is watching me since the moment I clicked this video😂😂

What’s the best way to become an ethical hacker? I have no IT background.

Account recovery in general seems like a mole to *eagle spy recovery page* and his consistency is quite good either way. Although this video was helpful.

you are so fast man

love the idea of maldevacademy, but starting at 250$ is a bit XD

Modern technology of Nobita, bit understanding

instead of NIM C++ would be better I guess..

Make a full vedio on NIM language full course complete ✅

Flask

Off topic but are you using a type 1 hypervisor ? if so which one ? cause that windows vm is more performant than my native install

That was very technical, but interesting video!

Thanks now we are safer against you thanks to this

I don’t use hello world. I use hello daddy

I don’t condone making malware nor making it public. There are a lot of malicious creeps on here that could use this knowledge to harm innocent people. I don’t care for criminals but this could be used in the wrong way.

I've seen some malware written in D. Languages ​​such as Carbon, Zig, Haxe can be used. Could an AI help in these cases of detecting unconventional codes?

my first was...
/ bye world
😂

:)

So would this be a Trojan?

Hey man,
Can you suggest/make some videos on how decompilation to assembly/key activation (and protections against this) work?
It's a topic I've always found interesting, but pretty hard to make headway with, despite being an engineer myself.

i wish i could afford to import winim

You against the Chinese. Need you 😊

Vilu number meine Ido no null vilu mamun