Boschko Security Blog
  • Home
  • Topics
  • My Courses
  • About Boschko
Subscribe
Tagged

Windows Internal

A collection of 4 posts

Windows Internal

Cobalt Strike Process Injection

Discussing the various methods that Cobalt Strike uses to perform process injection.

  • Olivier Laflamme
Olivier Laflamme Nov 2, 2021 • 14 min read
Penetration Test

From Default Printer Credentials to Domain Admin

The tail of a Xerox pass-back-attack. How to exploit trust relationships between devices that are generally considered benign.

  • Olivier Laflamme
Olivier Laflamme Oct 19, 2021 • 4 min read
Windows Internal

Dynamically Retrieving System Call (syscall) Leveraging PTEs

Locate instantiated PTE by leaking the base address and dynamically using read primitive to retrieve the syscall id.

  • Olivier Laflamme
Olivier Laflamme Oct 14, 2021 • 3 min read
Windows Internal

Direct System Call (syscall) Process Injection to Avoid Anti-Kill

Quick n’ Dirty syscall process injection

  • Olivier Laflamme
Olivier Laflamme Sep 16, 2021 • 4 min read
Boschko Security Blog © 2022
Powered by Ghost