Snippet List

Technique Language Author Creation Date
NlsCodeInjectionThroughRegistry C++ Unprotect 2 weeks, 2 days
Execution Guardrails: Environmental Keying C++ Unprotect 2 weeks, 3 days
Unloading Sysmon Driver cmd Unprotect 2 weeks, 3 days
API Obfuscation C++ Unprotect 2 weeks, 3 days
IAT Hooking C++ Unprotect 2 weeks, 3 days
Shellcode Injection via CreateThreadpoolWait C++ Unprotect 2 weeks, 3 days
APC injection C++ Unprotect 2 weeks, 3 days
Reflective DLL injection C++ Unprotect 2 weeks, 3 days
PE Injection C++ Unprotect 2 weeks, 3 days
Parent PID Spoofing C++ Unprotect 2 weeks, 3 days
Timestomp C Unprotect 2 weeks, 3 days
Killing Windows Event Log C++ Unprotect 2 weeks, 3 days
ProcEnvInjection - Remote code injection by abusing process environment strings C++ Unprotect 3 weeks, 2 days
Process Herpaderping C++ Unprotect 2 months
Disabling Event Tracing for Windows (ETW) C++ Unprotect 2 months, 2 weeks
Guard Pages C++ Unprotect 1 year, 5 months
CLIPBRDWNDCLASS C++ Unprotect 1 year, 8 months
EditWordBreakProc C++ Unprotect 1 year, 8 months
Listplanting C++ Unprotect 1 year, 9 months
Checking Installed Software C++ Unprotect 1 year, 9 months
Wiping or Encrypting C++ Unprotect 1 year, 9 months
Time Bomb C++ Unprotect 1 year, 9 months
Time Bomb C++ Unprotect 1 year, 9 months
Injection using Shims C++ Unprotect 1 year, 9 months
Detecting Running Process: EnumProcess API C++ Unprotect 1 year, 9 months
VPCEXT C++ Unprotect 1 year, 9 months
Process Doppelgänging C++ Unprotect 1 year, 9 months
EventPairHandles C++ Unprotect 1 year, 9 months
Querying the I/O Communication Port C++ Unprotect 1 year, 10 months
Process Hollowing, RunPE Python Unprotect 1 year, 10 months
Filter