Outer Web | Explore

Explore >> Select a destination

You are here		m417z.com A guest in another process - a story of a remote thread crash - m417z / blog - A Blog About Stuff
\|	\|	bohops.com No Alloc, No Problem: Leveraging Program Entry Points for Process Injection - bohops	5.1 parsecs away Travel
\|	\|	Introduction Process Injection is a popular technique used by Red Teams and threat actors for defense evasion, privilege escalation, and other interesting use cases. At the time of this publishing, MITRE ATT&CK includes 12 (remote) process injection sub-techniques. Of course, there are numerous other examples as well as various and sundry derivatives. Recently, I was...	5.1 parsecs away Travel
\|	\|	modexp.wordpress.com Invoking System Calls and Windows Debugger Engine \| modexp	5.1 parsecs away Travel
\|	\|	Introduction Quick post about Windows System calls that I forgot about working on after the release of Dumpert by Cn33liz last year, which is described in this post. Typically, EDR and AV set hooks on Win32 API or NT wrapper functions to detect and mitigate against malicious activity. Dumpert attempts to bypass any user-level hooks...	5.1 parsecs away Travel
\|	\|	disman.tl An Improved Reflective DLL Injection Technique	4.3 parsecs away Travel
\|	\|	Developer \| Hacker \| Saboteur	4.3 parsecs away Travel
\|	\|	hunt.io Exposing the Deception: Russian EFF Impersonators Behind Stealc & Pyramid C2	23.7 parsecs away Travel
\|		Discover how an open directory exposed a threat actor impersonating EFF to target gamers and how we mapped their infrastructure to Stealc & Pyramid C2.	23.7 parsecs away Travel