-
Code Injection - Process PE Injection Basics
In this first part of the injection series, I am presenting how to inject and run code in a target process on Windows using the method called PE injection. This method allows...Continue reading →
1 September 2019 0 messages -
Bypass Windows Defender Attack Surface Reduction
A redteam oriented study of Windows Defender Exploit Guard Attack Surface Reduction. Analysis of several rules, what triggers them and how to...Continue reading →
24 February 2019 1 messages -
Yet another sdclt UAC bypass
Fileless UAC bypass via COM hijack using sdtlc.exe auto-elevated process.Continue reading →
23 January 2019 1 messages
-
Bypass Defender and other thoughts on Unicode RTLO attacks
I have been looking a bit into Unicode and Right-To-Left-Override phishing attacks lately. Mainly because I noticed that Windows Defender was detecting payloads generated with the "—unicode-rtlo"... Continue reading →
25 May 2020 0 messages
Search
Most popular
1. VNC to access Kali Linux on Raspberry Pi
2. Fun combining anti-debugging and anti-disassembly tricks
5 random articles
1. Bypass Windows Defender Attack Surface Reduction
3. String encryption using macro and cryptor
4. Setup a buffer overflow testing environment
5. Bypass Antivirus Dynamic Analysis
Sponsor
If you appreciate my work, you may help or reward with a contribution :)
