Apr 13 2020 Process Injection Part 2 | QueueUserAPC() by Joshua 4 Commentsin assembly, AV Bypass, Code Execution, Process Injection, Shellcode, syscalls, Sysmon, System Calls Low Level Process Injection using QueueUserAPC() via direct x86 asm syscalls to bypass AV, EDR, and Sysmon.... Read more 1
May 25 2019 Bypass Windows Defender with A Simple Shell Loader by Joshua 2 Commentsin assembly, C#, Defender, Defender Bypass, Shellcode, Shellcode Loader, Windows One of the most simplistic ways to get past Windows Defender is to roll your own shell code loader. There are hundreds of examples on GitHub, GitLab, and BitBucket but, this post is going to break it down and provide a simple framework that Red... Read more 0