Outer Web | Explore

Explore >> Select a destination

You are here		redteaming.co.uk PoshC2 Shellcode and Binary Patching - Red Teaming
\|	\|	thewover.github.io Emulating Covert Operations - Dynamic Invocation (Avoiding PInvoke & API Hooks) - The Wover - Red Teaming, .NET, and random computing topics	4.9 parsecs away Travel
\|	\|	TLDR: Presenting DInvoke, a new API in SharpSploit that acts as a dynamic replacement for PInvoke. Using it, we show how to dynamically invoke unmanaged code from memory or disk while avoiding API Hooking and suspicious imports.	4.9 parsecs away Travel
\|	\|	bohops.com Investigating .NET CLR Usage Log Tampering Techniques For EDR Evasion - bohops	3.1 parsecs away Travel
\|	\|	Introduction In recent years, there have been numerous published techniques for evading endpoint security solutions and sources such as A/V, EDR and logging facilities. The methods deployed to achieve the desired result usually differ in sophistication and implementation, however, effectiveness is usually the end goal (of course, with thoughtful consideration of potential tradeoffs). Defenders can...	3.1 parsecs away Travel
\|	\|	bc-security.org ScriptBlock Smuggling: Spoofing PowerShell Security Logs and Bypassing AMSI Without Reflection or Patching - BC Security	4.4 parsecs away Travel
\|	\|	[AI summary] The article discusses a technique called ScriptBlock Smuggling that allows attackers to spoof PowerShell security logs and bypass AMSI without reflection or patching, enabling stealthier cyber attacks.	4.4 parsecs away Travel
\|	\|	www.thezdi.com Zero Day Initiative - CVE-2023-20864: Remote Code Execution in VMware Aria Operations for Logs	30.4 parsecs away Travel
\|		[AI summary] A vulnerability in VMware Aria Operations for Logs allows remote code execution via insecure deserialization, patched in April 2023.	30.4 parsecs away Travel