-
Code Injection - Bypass start address protection
Over the year several mechanisms were developed by vendors to prevent code injection. A common mechanism is to detect invalid start address of the injected thread. Here, as an...Continue reading →
5 September 2019 0 messages -
Code Injection - Process PE Injection Basics
In this first part of the injection series, I am presenting how to inject and run code in a target process on Windows using the method called PE injection. This method allows...Continue reading →
1 September 2019 0 messages -
Bypass Windows Defender Attack Surface Reduction
A redteam oriented study of Windows Defender Exploit Guard Attack Surface Reduction. Analysis of several rules, what triggers them and how to...Continue reading →
24 February 2019 1 messages
-
Launch shellcodes and bypass Antivirus using MacroPack Pro VBA payloads
If you have ever been frustrated with manually writing Office/VBS payloads that ends up being detected by antivirus read this post! MacroPack Pro provides multiple options and templates related... Continue reading →
21 January 2021 0 messages
Search
Most popular
1. VNC to access Kali Linux on Raspberry Pi
2. Bypass Defender and other thoughts on Unicode RTLO attacks
3. Yet another sdclt UAC bypass
5 random articles
1. VNC to access Kali Linux on Raspberry Pi
3. Implement hash service using JCE
4. TVT DVR/CCTV webshell exploit
Sponsor
If you appreciate my work, you may help or reward with a contribution :)
