Read2Own: Red Teaming Microsoft Azure improsec.com/tech-blog/read…

Me and Her0 did a fair bit of research against one of the leading EDRs in the sector. This first post will hopefully be the start of a long saga, documenting all of our findings. This first part was dated back in 2020: riccardoancarani.github.io/2023-08-03-att…

Windows Internals Crash Course, by Duncan Ogilvie 🍍 youtu.be/I_nJltUokE0

📖 Container Security Workshop - Slides! Learn about security features & pitfalls of containerization tools * Containers basics * Securing and breaking into containerized workflows * Docker and Kubernetes security By Iain Smart & Rory McCune smarticu5.github.io/assets/talks/S…

Free Malware Analysis Course, covers malware concepts, malware analysis, and black-box reverse engineering techniques class.malware.re #cybersecurity #malware

TCM Security revamped their hacking Active Directory in their practical ethical hacking course. All their original content on AD is now free. Go forth and learn to hack my friends. m.youtube.com/watch?v=VXxH4n…

Part 2 of the Malware Analysis Project 101. Complete overview to set up an isolated analysis lab in VirtualBox or AWS. This is in preparation for the analysis of the prolific Zeus Banking Trojan in our next step. youtu.be/rmSIm3BKu3Y

Process Injection Series Part II: DLL Injection infosecwriteups.com/process-inject…

It's common knowledge that the best source for Windows native API definitions is the collection of System Informer (formerly Process Hacker) phnt headers. Surprisingly, there were no online docs for them, so I created a simple website: ntdoc.m417z.com

good primer into Windows Kernel Drivers blog.neuvik.com/journey-into-w…

It took me almost 3 years, but I finally restructured the Practical Malware Analysis section of my site. This is now broken up into more digestible sections, and I've also revamped the MITRE ATT&CK tests to come with appropriate categories and tagging. jaiminton.com/Tutorials/Prac…

Hey Hackers, Here's the EDR and AV Bypass Content Thread! 🧵 👇 #infosec #Hacking #Pentesting #redteam

Recently, I've been developing a repository called RustRedOps, focused on security techniques and malware development using the Rust language. I can say that it has been one of the most enriching journeys and I have learned a lot. I would like to express my gratitude to all the

GOADv3 🏰 is almost ready ! You can now try the v3-beta version 🥳 📂 Repository : github.com/Orange-Cyberde… 📖 Documentation : orange-cyberdefense.github.io/GOAD/ What's new ? 🧵👇

Sean Metcalf talk "Gone in 60 Seconds… How Azure AD/Entra ID Tenants are Compromised" is out now. Happy Viewing! youtube.com/watch?v=w8JY1M…

GIVEAWAY!! 🔥 We’re giving away 1 seat of Altered Security Certified Evasion Techniques Professional (CETP) – Evasion Lab. 🚀 👉 How to participate: 1️⃣ Like 👍 this post 2️⃣ Repost🔁 3️⃣ Comment 💬 what makes it useful to you 4️⃣ Follow Nikhil Mittal & Altered Security A random

#reversing #repost Windows Inter Process Communication: A Deep Dive Beyond the Surface Part 1 - IPC Roadmap - sud0ru.ghost.io/windows-inter-… Part 2 - RPC Architecture Overview - sud0ru.ghost.io/windows-inter-… Part 3 - Handles and binding - sud0ru.ghost.io/windows-inter-… Part 4 - RPC Security -

Valve Anti-Cheat (VAC) reverse engineering Writeup by codeneverdies codeneverdies.github.io/posts/gh-2/ #cybersecurity

Awesome real-life RedTeam infrastructure overview by DbgMan ^_^ 🔥🔥🔥 Juicy. 0xdbgman.github.io/posts/red-team…

Process Injection Infographic, version 2. #processinjection Bigger image here: struppigel.blogspot.de/2017/07/proces…