|
Up
|
|
|
|
|
2012-03-21 - Using UPX as a Security Packer.pdf
|
|
|
|
|
2012-09-19 - Knockin on Heavens Gate - Dynamic Processor Mode Switching.pdf
|
|
|
|
|
2018-12-12 - VBA RunPE - Breaking Out of Highly Constrained Desktop Environments.7z
|
|
|
|
|
2019-12-02 - Evading WinDefender ATP credential-theft a hit after a hit-and-miss start.pdf
|
|
|
|
|
2020-02-03 - Hooking Heavens Gate - a WOW64 hooking technique.pdf
|
|
|
|
|
2020-05-18 - How to use Trend Micro's Rootkit Remover to Install a Rootkit.pdf
|
|
|
|
|
2020-12-31 - Antivirus Artifacts III.pdf
|
|
|
|
|
2021-04-22 - Binary Data Hiding in VB6 Executables.pdf
|
|
|
|
|
2021-05-01 - Symantec Endpoint Protection Meets COM - Using Symantec.SSHelper As A LOLBIN.pdf
|
|
|
|
|
2021-05-12 - Breaking the WDAPT Rules with COM.pdf
|
|
|
|
|
2021-08-05 - Evil Model - Hiding Malware.pdf
|
|
|
|
|
2021-10-09 - Trololololobin and other lolololocoasters.pdf
|
|
|
|
|
2022-01-15 - Stealing Process Tokens POC.7z
|
|
|
|
|
2022-01-23 - Reload Executable Files to Achieve Efficient Inline-Hook.pdf
|
|
|
|
|
2022-02-07 - Invisible Sandbox Evasion - Check Point Research.pdf
|
|
|
|
|
2022-02-16 - wlrmdr.exe LOLBIN.7z
|
|
|
|
|
2022-03-24 - Manipulating LastWriteTime without leaving traces in the NTFS USN Journal.pdf
|
|
|
|
|
2022-04-02 - Unmanaged Code Execution with .NET Dynamic PInvoke.pdf
|
|
|
|
|
2022-04-18 - Token Manipulation in Rust Demonation.zip
|
|
|
|
|
2022-04-18 - UACMe.zip
|
|
|
|
|
2022-06-17 - Sleep Obfuscation - Ekko.zip
|
|
|
|
|
2022-08-01 - DeathSleep - Demonstrating sleep obfuscation.7z
|
|
|
|
|
2022-08-01 - DLL Hijacking Windows Defender NisSrv.txt
|
|
|
|
|
2023-03-21 - EkkoEx Sleep obfuscation.txt
|
|
|
|
|
2023-05-03 - Exploring Impersonation through the Named Pipe Filesystem Driver.pdf
|
|
|
|
|
2023-05-17 - VBA resolving exports in runtime without NtQueryInformationProcess or GetProcAddress.pdf
|
|
|
|
|
2023-07-25 - Advanced Module Stomping & Heap Stack Encryption.pdf
|
|
|
|
|
2023-08-27 - Demonstrating Parent Process ID Spoofing.txt
|
|
|
|
|
2023-10-06 - Reflective call stack detections and evasions.pdf
|
|
|
|
|
2024-02-16 - InflativeLoading.7z
|
|
|
|