Sysmon | Sevro Security

Apr 13 2020

Process Injection Part 2 | QueueUserAPC()

in assembly, AV Bypass, Code Execution, Process Injection, Shellcode, syscalls, Sysmon, System Calls

Low Level Process Injection using QueueUserAPC() via direct x86 asm syscalls to bypass AV, EDR, and Sysmon....

Read more

1

Apr 08 2020

Process Injection Part 1 | CreateRemoteThread()

in assembly, C++, Process Injection, syscalls, Sysmon, System Calls

Process Injection using Direct Syscalls and CreateRemoteThread...

Read more

5