/explore

Click through on any links that interest you or select the planets on the right to continue exploring the Outer Web.
You are here

cocomelonc.github.io
| | modexp.wordpress.com
3.1 parsecs away

Travel
| | Introduction Quick post about Windows System calls that I forgot about working on after the release of Dumpert by Cn33liz last year, which is described in this post. Typically, EDR and AV set hooks on Win32 API or NT wrapper functions to detect and mitigate against malicious activity. Dumpert attempts to bypass any user-level hooks...
| | bohops.com
3.5 parsecs away

Travel
| | Introduction Process Injection is a popular technique used by Red Teams and threat actors for defense evasion, privilege escalation, and other interesting use cases. At the time of this publishing, MITRE ATT&CK includes 12 (remote) process injection sub-techniques. Of course, there are numerous other examples as well as various and sundry derivatives. Recently, I was...
| | wsummerhill.github.io
2.7 parsecs away

Travel
| | Malware Development Introduction (aka Malware Dev 101), Part 2 - Evasion Basics
| | 0xcybery.github.io
15.9 parsecs away

Travel
| Bypass Windows Defender in Windows 11.