Bypassing AV/EDR Hooks via Vectored Syscall – POC
Bypassing AV/EDR Hooks via Vectored Syscall – POC Vectored Syscall It’s common to unhook any AV/EDRs hook in order to bypass them. […]
Google WorkSpace Directory Dump Tool
Google WorkSpace Directory Dump Tool Google Workspace Directory Extraction Tool : During a Cloud Red Team Project, as our last objective we […]
Kernel Exploitation Series – 001 – Exploiting Asus Aura Sync (1.07.71) & Bypassing SMEP & KASLR
Kernel Exploitation Series – 001 – Exploiting Asus Aura Sync (1.07.71) & Bypassing SMEP & KASLR CVE-2019-17603: Asus Aura Sync Introduction Asus […]
Blending with McAfee [Part-3]
Blending with McAfee [Part-3] Malwares are like parasites. They like to sit on other processes and perform malicious acts from there if […]
EDR Series : Function Re-casting (Part-2)
EDR Series : Function Re-casting (Part-2) In this series of blog post, we will explore about function re-casting while exploring McAfee EDR.
EDR Series : How EDR Hooks API Calls (Part-1)
EDR Series : How EDR Hooks API Calls (Part-1) EDR is a hot topic in the present world. In this blog post One thing that we all know is most of the EDR hooks in the user-land.
