Loading video...

Video Failed to Load

Go Home

Introducing DarkWidow (Dropper/PostExploitation Toolkit): Capabilities: 1. Indirect Dynamic Syscall 2. SSN + Syscall address sorting via Modified TartarusGate approach (Other capabilities are in the comments...)

reveng007's profile picture

Soumyani1

1,452 subscribers

30,730 views • 2 years ago •via X (Twitter)

LIVE

Anya Rossi• Live Now

Private livecam show

10 Comments

Soumyani1's profile picture
Soumyani12 years ago

3. Remote Process Injection via APC Early Bird 4. Spawns a sacrificial Process as the target process 5. ACG(Arbitrary Code Guard)/BlockDll mitigation policy on spawned process 6. PPID spoofing 7. Cursed Nt Api resolving from TIB 8. Cursed Nt API hash If admin, kill Event Log svc!

Soumyani1's profile picture
Soumyani12 years ago

Shout out to these guys for directly/indirectly helping me out (Open Source Contribution :)): @SEKTOR7net @VirtualAllocEx @peterwintrsmith @D1rkMtr @Jean_Maes_1994 @0xBoku @_winterknife_

Daniel's profile picture
Daniel2 years ago

Congratulations, well done!

Soumyani1's profile picture
Soumyani12 years ago

Thanks a lot sir, ur blog really helping me :)

Bobby Cooke's profile picture
Bobby Cooke2 years ago

Looks cool, great work!

Soumyani1's profile picture
Soumyani12 years ago

Your project SPAWN really helped me to build this, previously when I was trying to grant both CIG and ACG mitigation policy to spawned process, I wasn't able to do that. After seeing your code and trying it out, it made much more sense to me. Thanks for that :)

spencer's profile picture
spencer2 years ago

Interesting. Adding this to my list of fun things to checkout. Nice work

Soumyani1's profile picture
Soumyani12 years ago

Thank u! Glad my project was able to slid into your "list of interest things" :)

urban.ntdll's profile picture
urban.ntdll2 years ago

Nice man…

Soumyani1's profile picture
Soumyani12 years ago

Thank u :)

Related Videos

Today, we are introducing RFM-1, our Robotics Foundation Model giving robots human-like reasoning capabilities.
0:33

Today, we are introducing RFM-1, our Robotics Foundation Model giving robots human-like reasoning capabilities.

Covariant

118,289 views • 2 years ago

🔍 NTSleuth is now live! A new comprehensive Windows Syscall Extraction & Analysis Framework. Still early stages with many ideas brewing, but hope it helps some of you! ✨ Features: • Extracts thousands of syscalls from ntdll.dll & win32u.dll as well as and WOW64 variants • ARM64, x64, x86 support • Extracts and analyzes syscall stub bytes • Auto parameter resolution (1100+ signatures) Identifies Nt/Zw function relationships • Syscall lookup mode • Outputs JSON & C headers 🔗
0:24

🔍 NTSleuth is now live! A new comprehensive Windows Syscall Extraction & Analysis Framework. Still early stages with many ideas brewing, but hope it helps some of you! ✨ Features: • Extracts thousands of syscalls from ntdll.dll & win32u.dll as well as and WOW64 variants • ARM64, x64, x86 support • Extracts and analyzes syscall stub bytes • Auto parameter resolution (1100+ signatures) Identifies Nt/Zw function relationships • Syscall lookup mode • Outputs JSON & C headers 🔗

Alex

13,936 views • 9 months ago

Weapons Company with the 31stMEU is enhancing our mission readiness by providing mobile, lightweight indirect fire capabilities in the Indo-Pacific region.
0:26

Weapons Company with the 31stMEU is enhancing our mission readiness by providing mobile, lightweight indirect fire capabilities in the Indo-Pacific region.

Department of Defense 🇺🇸

33,701 views • 11 months ago

Via alpha testnet is ready & live Our EVM-compatible execution environment extends Bitcoin's capabilities by introducing a scalable execution layer where transactions are processed efficiently Bridge BTC VIA Testnet demo:
0:45

Via alpha testnet is ready & live Our EVM-compatible execution environment extends Bitcoin's capabilities by introducing a scalable execution layer where transactions are processed efficiently Bridge BTC VIA Testnet demo:

via

10,631 views • 1 year ago

NO OTHER COUNTRY IN THE WORLD HAS THE WEAPONRY OR THE CAPABILITIES THAT THE UNITED STATES HAS.
1:00

NO OTHER COUNTRY IN THE WORLD HAS THE WEAPONRY OR THE CAPABILITIES THAT THE UNITED STATES HAS.

DOW Rapid Response

494,973 views • 11 months ago

In order to test the space shuttle Enterprise's landing capabilities, it was carried to 24,000 feet atop a modified 747, and blasted off using explosive charges.
0:47

In order to test the space shuttle Enterprise's landing capabilities, it was carried to 24,000 feet atop a modified 747, and blasted off using explosive charges.

Historic Vids

4,669,490 views • 2 years ago

ChatGPT, AutoGPT and AgentGPT are in trouble. just changed the game with its new AI capabilities. Introducing AIAgent - A web based automateGPT that is different in a really good way:
0:29

ChatGPT, AutoGPT and AgentGPT are in trouble. just changed the game with its new AI capabilities. Introducing AIAgent - A web based automateGPT that is different in a really good way:

Hasan Toor

390,843 views • 3 years ago

2026 Art Calendar links! 1. Print Ready PDF 2. Print via Canva Comments notes and other info in replies
1:00

2026 Art Calendar links! 1. Print Ready PDF 2. Print via Canva Comments notes and other info in replies

🟥 ⁷ | just a person🥢 ㅇㄹㄹ ᶠᵘᵗᵘʳᵉ'ˢ ᵍᵒⁿⁿᵃ ᵇᵉ ᵒᵏᵃʸ

15,895 views • 7 months ago

📲 Gemma 3n delivers advanced on-device AI with optimized performance and multimodal understanding. Take a closer look at the early preview text capabilities available in Google AI Studio, GenAI SDK, and text/image capabilities via MediaPipe.
5:47

📲 Gemma 3n delivers advanced on-device AI with optimized performance and multimodal understanding. Take a closer look at the early preview text capabilities available in Google AI Studio, GenAI SDK, and text/image capabilities via MediaPipe.

Google AI Developers

16,635 views • 1 year ago

Iranian nuclear capabilities are not a joke.
1:15

Iranian nuclear capabilities are not a joke.

MEP Sebastian Tynkkynen

14,862 views • 2 months ago

Industry partners are significantly enhancing their design capabilities in the country, further strengthening Bharat’s electronics manufacturing ecosystem.
1:05

Industry partners are significantly enhancing their design capabilities in the country, further strengthening Bharat’s electronics manufacturing ecosystem.

Ashwini Vaishnaw

17,336 views • 8 months ago

The Takers 🧨 Alabama’s wide receivers are ready to showcase their explosive capabilities in 2025. #RollTide | Gatorade
3:55

The Takers 🧨 Alabama’s wide receivers are ready to showcase their explosive capabilities in 2025. #RollTide | Gatorade

Alabama Football

26,448 views • 1 year ago

Introducing: The shared discovery engine for Openclaws on Moltbook to chat privately. Starting today: → You & your agent can find other Moltbook agents in the HOL Registry → Chat using XMTP through the official Skill or SDK → Filter by trust score and capabilities↓
0:29

Introducing: The shared discovery engine for Openclaws on Moltbook to chat privately. Starting today: → You & your agent can find other Moltbook agents in the HOL Registry → Chat using XMTP through the official Skill or SDK → Filter by trust score and capabilities↓

HOL

23,014 views • 4 months ago

Etw, I barely even know her! If you want to follow my System Call Integrity Layer mini-project (and additionally maybe an Alt Syscall logging tool for researchers) - I have uploaded the initial commit to GitHub: Video demo of the syscall logging module attached for SSNs for NtOpenProcess, NtAllocateVM, NtWriteVm and NtCreateThreadEx. There is something special about writing a driver (in Rust) and getting no BSOD on the first test when dealing pool allocations across threads! #blueteam #edr #redteam #cyber #cybersecurity #infosec #computing #kernel #driver #rust #rustlang #securityresearch #winternals
0:28

Etw, I barely even know her! If you want to follow my System Call Integrity Layer mini-project (and additionally maybe an Alt Syscall logging tool for researchers) - I have uploaded the initial commit to GitHub: Video demo of the syscall logging module attached for SSNs for NtOpenProcess, NtAllocateVM, NtWriteVm and NtCreateThreadEx. There is something special about writing a driver (in Rust) and getting no BSOD on the first test when dealing pool allocations across threads! #blueteam #edr #redteam #cyber #cybersecurity #infosec #computing #kernel #driver #rust #rustlang #securityresearch #winternals

flux

16,968 views • 4 months ago

Train to WIN. Multi-Domain Command-Europe, allied forces, trained together during dynamic Front 26 in late January, a large-scale exercise emphasizing the integration of Joint Fires capabilities.
0:52

Train to WIN. Multi-Domain Command-Europe, allied forces, trained together during dynamic Front 26 in late January, a large-scale exercise emphasizing the integration of Joint Fires capabilities.

U.S. Army

15,925 views • 3 months ago

One year after introducing Project Astra we've: 🗣️Upgraded voice output to be more natural 🧠 Improved memory capabilities 💻 Added computer control Soon, we’ll bring these capabilities to Gemini Live, Search, glasses, & more!
1:54

One year after introducing Project Astra we've: 🗣️Upgraded voice output to be more natural 🧠 Improved memory capabilities 💻 Added computer control Soon, we’ll bring these capabilities to Gemini Live, Search, glasses, & more!

Google AI

16,027 views • 1 year ago

The October update for the VS Code AI Toolkit ( is out with so many exciting new features! 🔥Explore the most popular GenAI models in the Model Catalog and experiment with multi-modal capabilities in the Model Playground, all from within VS Code!
1:11

The October update for the VS Code AI Toolkit ( is out with so many exciting new features! 🔥Explore the most popular GenAI models in the Model Catalog and experiment with multi-modal capabilities in the Model Playground, all from within VS Code!

Visual Studio Code

154,205 views • 1 year ago

Introducing RAT: Retrieval Argument Thinking. Extract just the reasoning process from deepSeek-r1 and send it to any LLM via . Boost the second LLM's performance and gain access to missing capabilities like function calling and JSON mode. 👇
1:51

Introducing RAT: Retrieval Argument Thinking. Extract just the reasoning process from deepSeek-r1 and send it to any LLM via . Boost the second LLM's performance and gain access to missing capabilities like function calling and JSON mode. 👇

Pietro Schirano

532,880 views • 1 year ago

1/ It’s finally time for Bitcoin to get privacy. Introducing strkBTC [₿]: a new wrapped Bitcoin token with built-in privacy capabilities. Shield your Bitcoin balances and transfers, or don’t. You choose 🧵
0:56

1/ It’s finally time for Bitcoin to get privacy. Introducing strkBTC [₿]: a new wrapped Bitcoin token with built-in privacy capabilities. Shield your Bitcoin balances and transfers, or don’t. You choose 🧵

Starknet (Privacy Arc)

272,650 views • 3 months ago

#NintendoSwitch2 is a absolute Hybrid POWERHOUSE! PRAGMATA Switch 2 demo looks AMAZING! This Early build has crazy Visuals at 60fps In Docked AND Portable mode Devs are starting to Tap into Switch 2 advanced capabilities over PS5/Xbox Via Nintenduo World
0:58

#NintendoSwitch2 is a absolute Hybrid POWERHOUSE! PRAGMATA Switch 2 demo looks AMAZING! This Early build has crazy Visuals at 60fps In Docked AND Portable mode Devs are starting to Tap into Switch 2 advanced capabilities over PS5/Xbox Via Nintenduo World

NintenGOD

129,512 views • 4 months ago