Commander Minority Report
November 21, 2020 in Random ideas
This is an idea I have not tested in practice, but it emerged in response to a simple question: What if sysmon, 4688, EDR command line logging couldn’t catch a […]
November 21, 2020 in Random ideas
This is an idea I have not tested in practice, but it emerged in response to a simple question: What if sysmon, 4688, EDR command line logging couldn’t catch a […]
August 22, 2020 in Anti-Forensics, Living off the land, Malware Analysis, Random ideas
In my old post I discussed the idea of MUI poisoning. Today I want to show a practical example of this technique – one that has an interesting impact on […]