Snippet List

Technique Language Author Creation Date
FLIRT Signatures Evasion Assembly Lexsek 4 days, 22 hours
Windows Event Log Evasion via Native APIs C++ External 1 week, 1 day
Process Hollowing, RunPE Delphi Jean-Pierre LESUEUR 1 week, 5 days
RDTSC C++ External 2 weeks
NtQueryObject C++ External 2 weeks
CsrGetProcessID C++ External 2 weeks
CloseHandle, NtClose C++ External 2 weeks
Heap Flag C++ External 2 weeks
GetTickCount C++ External 2 weeks
GetLocalTime, GetSystemTime, timeGetTime, NtQueryPerformanceCounter C++ External 2 weeks
Performing Code Checksum C++ External 2 weeks
Unhandled Exception Filter C++ External 2 weeks
Trap Flag C++ External 2 weeks
INT 0x2D C++ External 2 weeks
Trap Flag Assembly External 2 weeks
ICE 0xF1 Assembly External 2 weeks
INT 0x2D Assembly External 2 weeks
INT3 Instruction Scanning Assembly External 2 weeks
INT3 Instruction Scanning C++ External 2 weeks
Bad String Format MASM External 2 weeks
SuspendThread C++ External 2 weeks
NlsCodeInjectionThroughRegistry C++ Unprotect 2 weeks, 2 days
Unloading Sysmon Driver cmd Unprotect 2 weeks, 3 days
IAT Hooking C++ Unprotect 2 weeks, 3 days
API Obfuscation C++ Unprotect 2 weeks, 3 days
Shellcode Injection via CreateThreadpoolWait C++ Unprotect 2 weeks, 3 days
Killing Windows Event Log C++ Unprotect 2 weeks, 3 days
Execution Guardrails: Environmental Keying C++ Unprotect 2 weeks, 3 days
Reflective DLL injection C++ Unprotect 2 weeks, 3 days
Parent PID Spoofing C++ Unprotect 2 weeks, 3 days

Filter