by rdsouza | Jul 13, 2021
Illegal Service and Process Control via Mimikatz modules aaf3adf1-73e1-4477-b4ee-3771898964f1
by rdsouza | Jul 13, 2021
Suspicious SolarWinds Child Process 93b22c0a-06a0-4131-b830-b10d5e166ff4
by rdsouza | Jul 13, 2021
Accessing WinAPI in PowerShell 03d83090-8cba-44a0-b02f-0b756a050306
by rdsouza | Jul 13, 2021
Possible App Whitelisting Bypass via WinDbg/CDB as a Shellcode Runner b5c7395f-e501-4a08-94d4-57fe7a9da9d2
by rdsouza | Jul 13, 2021
RedMimicry Winnti Playbook Execute 95022b85-ff2a-49fa-939a-d7b8f56eeb9b