/explore

Click through on any links that interest you or select the planets on the right to continue exploring the Outer Web.
You are here

idafchev.github.io
| | blacklight.sh
4.3 parsecs away

Travel
| | A beginner's guide to bypassing EDR systems using APC queue injection and direct system calls.
| | cocomelonc.github.io
3.6 parsecs away

Travel
| |
| | gpfault.net
3.0 parsecs away

Travel
| | [AI summary] The provided text is a detailed explanation of how to write a simple 64-bit Windows application in assembly language that calls the ExitProcess function from the KERNEL32.DLL library. It covers the following key topics: 1. **Memory and Register Basics**: Explains how memory and registers work in 64-bit Windows, including the use of the stack pointer (RSP), registers like RCX, RDX, R8, and R9 for passing arguments, and the importance of stack alignment for performance. 2. **Calling Conventions**: Details the 64-bit Windows calling convention, including how the first four integer or pointer arguments are passed in registers (RCX, RDX, R8, R9), how additional arguments are passed on the stack, and the requirement for the stack to be aligned to ...
| | pentestlaboratories.com
35.0 parsecs away

Travel
| Microsoft .NET framework is being heavily utilized by threat actors and red teams for defense evasion and staying off the radar during operations. Every .NET binary contains application domains where assemblies are loaded in a safe manner. The AppDomainManager object can be used to create new ApplicationDomains inside a .NET process. From the perspective of...