Dwight HohnsteininPosts By SpecterOps Team MembersApollo 2.0 — New Year, New FeaturesP2P, SOCKS5 Proxying, Runtime Command Loading, and MoreFeb 2, 2022Feb 2, 2022
Dwight HohnsteininPosts By SpecterOps Team Members1Password Secret Retrieval — Methodology and ImplementationHow to Delve in Secret VaultsAug 17, 20211Aug 17, 20211
Dwight HohnsteininPosts By SpecterOps Team MembersMan in the TerminalApplication Proxy Middleware for Session StealingApr 5, 2021Apr 5, 2021
Dwight HohnsteininPosts By SpecterOps Team MembersApollo and Mythic: A Myth Worth RetellingIntroductionNov 12, 2020Nov 12, 2020
Dwight HohnsteininPosts By SpecterOps Team MembersMalware Development Pt. 1: Dynamic Module Loading in GoLoading and managing shared libraries in memory.Aug 31, 2020Aug 31, 2020
Dwight HohnsteininPosts By SpecterOps Team MembersThe Curious Case of QueueUserAPCMain threads of .NET Core/Framework executables always become alertable without calling alertable functions from managed code.Jul 1, 20191Jul 1, 20191
Dwight HohnsteininPosts By SpecterOps Team MembersLateral Movement — SCM and Dll Hijacking PrimerUsing the Service Control Manager and built-in services for lateral movement.Apr 18, 2019Apr 18, 2019