REVIEW: RED TEAM Operator: Malware Development Intermediate Course by SEKTOR7 Institute.
Tag: C
REVIEW: RED TEAM Operator: Windows Evasion Course by SEKTOR7 Institute
REVIEW: RED TEAM Operator: Windows Evasion Course by SEKTOR7 Institute.
picoCTF 2019 flag_shop Writeup
picoCTF 2019 flag_shop writeup.
Enumerating Processes with CreateToolhelp32Snapshot
Quick and dirty example of process enumeration using CreateToolhelp32Snapshot
Enumerating Processes with WTSEnumerateProcesses
Quick example of using WTSEnumerateProcesses to enumerate processes running on a Windows machine.
Finding Processes With Suspicious CWD Using procfs
Find malware running from temporary directories using procfs.
Finding Masquerading Processes With procfs
Find masquerading processes using procfs.
REVIEW: RED TEAM Operator: Windows Persistence Course by SEKTOR7 Institute
My review of SEKTOR7 Institute's Red Team Operator, Windows Persistence course.
Exit Values on Windows
Exit values on Windows are much more robust than on *nix systems. Here are some notes about exit values on Windows