ASM6 Mastering Living off the Process in Offensive Security
No need for overusing WriteProcessMemory, VirtualAlloc, injecting a DLL, etc. This way, everything you need to manipulate the remote process is self-contained…
ASM6 No need for overusing WriteProcessMemory, VirtualAlloc, injecting a DLL, etc. This way, everything you need to manipulate the remote process is self-contained…
cpp4 Red team technique—process injection—and how to leverage it against Protected Process Light (PPL)
Bypassing2 The post explores how Windows security products use kernel image load notifications to monitor when executables and DLLs are loaded by the system. These…
Injection3 In this article, I will demonstrate one of the classic, fundamental techniques for injecting shellcode into a remote process using APCs. I…
Audio2 Original post by S1lky This article describes DLL hijacking in the context of the audiodg.exe process which may load vendor-supplied APO-related DLL…
Administrator2 Original text by James Forshaw A headline feature introduced in the latest release of Windows 11, 25H2 is Administrator Protection. The goal of…
winapi10 Original text by DENIS NAGAYUK & FRANCISCO DOMINGUEZ This article aims to provide the reader with a comprehensive guide to the technical details and…
Original post by Zero Salarium / link . INTRO Important or sensitive processes of modern Windows operating systems are now protected by…