You are browsing the archive for LOLBins.

← Previous Entries

Beyond good ol’ Run key, Part 136

January 18, 2022 in Autostart (Persistence), Living off the land, LOLBins

I love Office-based Persistence mechanisms, because there is always… one more to discover 🙂 Take your Winword.exe from Office 2021 or Office 365. When it loads, it check if the […]

Comments Off on Beyond good ol’ Run key, Part 136

Trololololobin and other lolololocoasters

October 9, 2021 in Living off the land, LOLBins

In my older tweet I gave an example of a surgical way to inject process into a chain of executed programs and launch them at a predetermined position in a […]

Comments Off on Trololololobin and other lolololocoasters

← Previous Entries