S12 - H4CKEvade EDR External Connections via Firewall RulesHey there! Welcome to another Medium post. Today, we’re diving into a nifty trick: creating firewall rules to block outgoing network…1d ago1d ago
S12 - H4CKGet TCP Active Connections with WMIWelcome to this new post on Medium, today i will show you a C++ code to list all the active TCP connection through WMI, this is a simple…3d ago3d ago
S12 - H4CKEventLog Blinder for EDR/AV EvasionWelcome to this new post on Medium, today i will show you a Windows malware development technique named EventLog Blinder and it’s used to…6d ago6d ago
S12 - H4CKDetecting and Deleting BitDefenderWelcome to this new post on Medium, today we have a new malware technique and a new malware release, both are fully developed and…Aug 5Aug 5
S12 - H4CKUnloading Sysmon DriverWelcome to my new post on Medium, today i will show you two ways to unload the Sysmon Driver from your current or a remote process.Aug 1Aug 1
S12 - H4CKBlind Sysmon with MiniFilterWelcome to this new post, today i will show you a basic technique to blind the Sysmon EDR, during a red team operation can be so usual to…Jul 30Jul 30
S12 - H4CKFree Thread HijackingWelcome to my new post on Medium, today i will show you how a free thread hijacking technique can be implemented, what means free thread…Jul 291Jul 291
S12 - H4CKShellcode Execution CheatSheetWelcome to this exclusive module to show you all the ways, options, extensions and all the stuff about the Shellcode Execution in Windows…Jul 24Jul 24
S12 - H4CKGeneric Uninstaller via Scheduled TaskWelcome to my latest post! Today, I will show you a basic, generic, and simple method for deleting malicious files after you have left the…Jul 23Jul 23