# Windows Internals and API

- [Building Backdoors with Alternative Socket with lib-nosa (No Socket API)](/offensive-security/windows-internals-and-api/building-backdoors-with-alternative-socket-with-lib-nosa-no-socket-api.md): Alternative implementation of winsock2 using AFD.sys for socket realization. Still improving!
- [Windows API Hashing to Malware](/offensive-security/windows-internals-and-api/windows-api-hashing-to-malware.md)
- [Detection of Hooked Syscalls in ntdll.dll](/offensive-security/windows-internals-and-api/detection-of-hooked-syscalls-in-ntdll.dll.md)
- [Credential Exposure in Memory](/offensive-security/windows-internals-and-api/credential-exposure-in-memory.md): A Deep Dive into SecureString, PowerShell, and Windows Process Internals