Jean-Pierre LESUEUR (DarkCoderSc)
Lead Developer / Malware Researcher / Microsoft MVP
Administrator Core Developer Top Contributor

With over 20 years of experience in Information Technology, I am a seasoned Security Researcher, Penetration Tester and Malware Researcher/Reverse Engineer. My expertise extends to development, proficient in languages such as C#, Python, Pascal/Delphi, and Assembly x86. In 2014, I founded PHROZEN, a venture dedicated to creating innovative cybersecurity solutions. My commitment lies in safeguarding our digital future, continuously advancing in knowledge and developing cutting-edge security measures.

Contributed Techniques
Technique Name Technique ID's Categories Snippet(s) Rules(s)
Indirect Memory Writing U0525
FuncIn U0132 U0221 U0308
SMB / Named Pipes U9011
Right-to-Left Override (RLO) Extension Spoofing U1010
C2 via FTP(S) U0910
Impair Defenses: Impair Command History Logging T1562.003
Code Cave U0502
Contributed Code Snippets
Technique Language OS Creation Date
Indirect Memory Writing Delphi Windows 5 months, 4 weeks
System Binary Proxy Execution: Rundll32 Delphi Windows 1 year, 1 month
APC injection FASM32 Windows 1 year, 10 months
Reflective DLL injection Delphi Windows 2 years, 4 months
SMB / Named Pipes Delphi Windows 2 years, 7 months
SMB / Named Pipes C# Windows 2 years, 7 months
Right-to-Left Override (RLO) Extension Spoofing PowerShell Windows 2 years, 7 months
C2 via FTP(S) Delphi Windows 2 years, 9 months
C2 via FTP(S) C# Windows 2 years, 9 months
Shortcut Hiding Python Windows 3 years, 3 months
APC injection Delphi Windows 3 years, 6 months
APC injection Delphi Windows 3 years, 6 months
Indicator Removal: Timestomp C# Windows 3 years, 7 months
Process Hollowing, RunPE Delphi Windows 3 years, 9 months
ProcEnvInjection - Remote code injection by abusing process environment strings Delphi Windows 3 years, 9 months
DLL Injection via CreateRemoteThread and LoadLibrary Delphi Windows 3 years, 9 months
Checking Mouse Activity Delphi Windows 3 years, 9 months
Detecting Mac Address C# Windows 3 years, 9 months
NtQueryInformationProcess Delphi Windows 3 years, 9 months
NtQueryInformationProcess C# Windows 3 years, 9 months
File Melt C# Windows 3 years, 9 months
File Melt Delphi Windows 5 years, 1 month
Detecting Active Services Delphi Windows 5 years, 1 month
NTFS Files Attributes Delphi Windows 5 years, 3 months
Code Cave Python Windows 5 years, 4 months
NtQueryObject Delphi Windows 5 years, 5 months
NtSetInformationThread Delphi Windows 5 years, 6 months
IsDebuggerPresent Delphi Windows 5 years, 6 months
NtSetDebugFilterState Delphi Windows 5 years, 6 months
OutputDebugString Delphi Windows 5 years, 6 months
SuspendThread Delphi Windows 5 years, 6 months
Detecting Window with FindWindow API Delphi Windows 5 years, 6 months
Detecting Window with FindWindow API Python Windows 5 years, 6 months
IsDebugged Flag Delphi Windows 5 years, 7 months