Process Injection Part 2 | QueueUserAPC()
4 Comments
Low Level Process Injection using QueueUserAPC() via direct x86 asm syscalls to bypass AV, EDR, and Sysmon....
Apr
13
2020
May
25
2019
Bypass Windows Defender with A Simple Shell Loader
One of the most simplistic ways to get past Windows Defender is to roll your own shell code loader. There are hundreds of examples on GitHub, GitLab, and BitBucket but, this post is going to break it down and provide a simple framework that Red...