| Disabling Antivirus |
PowerShell
|
7 months, 1 week |
| Thread Execution Hijacking |
C++
|
8 months, 2 weeks |
| Propagate |
C++
|
9 months |
| Ctrl+Inject |
C++
|
9 months |
| Inline Hooking |
C++
|
9 months |
| SIDT, Red Pill |
C++
|
9 months, 3 weeks |
| LOLbins |
cmd
|
9 months, 3 weeks |
| Unloading Sysmon Driver |
C++
|
9 months, 4 weeks |
| Parent Process Detection |
C++
|
9 months, 4 weeks |
| Thwarting Stack-Frame Analysis |
C++
|
9 months, 4 weeks |
| Misusing Structured Exception Handlers |
C++
|
9 months, 4 weeks |
| API Obfuscation |
Python
|
9 months, 4 weeks |
| Control Flow Graph Flattening |
C++
|
9 months, 4 weeks |
| Obscuring Control Flow Using Pointers |
C++
|
9 months, 4 weeks |
| Obscuring Control Flow |
C++
|
9 months, 4 weeks |
| Jump With Same Target |
C++
|
9 months, 4 weeks |
| Dynamically Computed Target Address |
C++
|
9 months, 4 weeks |
| Disassembly Desynchronization |
C++
|
9 months, 4 weeks |
| NOP Sled |
C++
|
9 months, 4 weeks |
| Call Trick |
C++
|
9 months, 4 weeks |
| Inserting Garbage Bytes |
C++
|
9 months, 4 weeks |
| Register Reassignment |
Assembly
|
9 months, 4 weeks |
| Code Transposition |
C++
|
9 months, 4 weeks |
| Opaque Predicate |
C
|
9 months, 4 weeks |
| Performing Code Checksum |
Python
|
9 months, 4 weeks |
| Interrupts |
C++
|
9 months, 4 weeks |
| DLL Proxying |
Python
|
9 months, 4 weeks |
| Hook Injection |
Python
|
9 months, 4 weeks |
| Hook Injection |
C++
|
9 months, 4 weeks |
| NLS Code Injection Through Registry |
C++
|
1 year, 3 months |
| IAT Hooking |
C++
|
1 year, 3 months |
| Indicator Removal: Timestomp |
C
|
1 year, 3 months |
| Shellcode Injection via CreateThreadpoolWait |
C++
|
1 year, 3 months |
| APC injection |
C++
|
1 year, 3 months |
| Execution Guardrails: Environmental Keying |
C++
|
1 year, 3 months |
| Unloading Sysmon Driver |
cmd
|
1 year, 3 months |
| API Obfuscation |
C++
|
1 year, 3 months |
| Reflective DLL injection |
C++
|
1 year, 3 months |
| PE Injection |
C++
|
1 year, 3 months |
| Access Token Manipulation: Parent PID Spoofing |
C++
|
1 year, 3 months |
| Killing Windows Event Log |
C++
|
1 year, 3 months |
| ProcEnvInjection - Remote code injection by abusing process environment strings |
C++
|
1 year, 3 months |
| Process Herpaderping |
C++
|
1 year, 5 months |
| Disabling Event Tracing for Windows (ETW) |
C++
|
1 year, 5 months |
| Guard Pages |
C++
|
2 years, 8 months |
| CLIPBRDWNDCLASS |
C++
|
2 years, 11 months |
| EditWordBreakProc |
C++
|
2 years, 11 months |
| Listplanting |
C++
|
2 years, 12 months |
| Checking Installed Software |
C++
|
2 years, 12 months |
| Wiping or Encrypting |
C++
|
3 years |
| CPUID |
C++
|
3 years |
| Time Bomb |
C++
|
3 years |
| Time Bomb |
C++
|
3 years |
| Injection using Shims |
C++
|
3 years |
| Detecting Running Process: EnumProcess API |
C++
|
3 years |
| VPCEXT |
C++
|
3 years |
| EventPairHandles |
C++
|
3 years |
| Querying the I/O Communication Port |
C++
|
3 years |
| Process Hollowing, RunPE |
Python
|
3 years, 1 month |
