-
Code Injection - Bypass start address protection
Over the year several mechanisms were developed by vendors to prevent code injection. A common mechanism is to detect invalid start address of the injected thread. Here, as an...Continue reading →
5 September 2019 0 messages -
Code Injection - Process PE Injection Basics
In this first part of the injection series, I am presenting how to inject and run code in a target process on Windows using the method called PE injection. This method allows...Continue reading →
1 September 2019 0 messages -
Bypass Windows Defender Attack Surface Reduction
A redteam oriented study of Windows Defender Exploit Guard Attack Surface Reduction. Analysis of several rules, what triggers them and how to...Continue reading →
24 February 2019 1 messages
-
Launch shellcodes and bypass Antivirus using MacroPack Pro VBA payloads
If you have ever been frustrated with manually writing Office/VBS payloads that ends up being detected by antivirus read this post! MacroPack Pro provides multiple options and templates related... Continue reading →
21 January 2021 0 messages
Search
Most popular
1. VNC to access Kali Linux on Raspberry Pi
2. Launch shellcodes and bypass Antivirus using MacroPack Pro VBA payloads
4. Bypass Defender and other thoughts on Unicode RTLO attacks
5 random articles
1. Advanced MacroPack payloads: XLM Injection
3. XSS : Get string without quote
4. Code Injection - Weaponize GhostWriting Injection
5. Real-time system alerts using Twitter OAuth (the Theory)
Sponsor
If you appreciate my work, you may help or reward with a contribution :)
