You are browsing the archive for Random ideas.

Commander Minority Report

November 21, 2020 in Random ideas

This is an idea I have not tested in practice, but it emerged in response to a simple question: What if sysmon, 4688, EDR command line logging couldn’t catch a […]

MUI Poisoning in practice

August 22, 2020 in Anti-Forensics, Living off the land, Malware Analysis, Random ideas

In my old post I discussed the idea of MUI poisoning. Today I want to show a practical example of this technique – one that has an interesting impact on […]