Find malware running from temporary directories using procfs.
Category: malware

Finding Masquerading Processes With procfs
Find masquerading processes using procfs.
Using procfs For Forensics and Incident Response
Using procfs For Forensics and Incident Response.
Toggling Chrome Safe Browsing
Toggle Safe Browsing in Google Chrome.
Post-Exploitation With gawk
Some post exploitation techniques using gawk.
Accessing Alternate Data Streams on VMDK Images on Linux
Accessing Alternate Data Streams on VMDK Images on Linux.

REVIEW:Malware Data Science – Attack Detection and Attribution
Review of Malware Data Science: Attack Detection and Attribution

REVIEW: RED TEAM Operator: Windows Persistence Course by SEKTOR7 Institute
My review of SEKTOR7 Institute's Red Team Operator, Windows Persistence course.

Windows Startup Folders
Windows Startup Folder locations.

Volatility Notes
Some notes and links related to the Volatility Framework

Volatility on Ubuntu 20.04
Quick and dirty way to get Volatility working on Ubuntu 20.04
Windows base64 Encoding and Decoding Using certutil
Use certutil.exe to encode and decode base64 on Windows.