I am very excited to release Part 2 of my "The Current State of Exploit Development" series on @CrowdStrike's blog . This post addresses ACG, XFG, CET, and VBS/HVCI, as well as summarizes my thoughts on the return on investment of exploitation. Enjoy!
crowdstrike.com/blog/state-o…
The sheer number of net new topics is astounding, and I think this will tickle the fancy of many that have been following the numerous changes made to Windows 10 and were hoping to see them described. I'm responsible for much of the delay in getting this out of the door😰. Enjoy!
I wrote a blog & proof of concept for a Beacon Object File that performs remote process injection via thread hijacking instead of spawning a new thread. This was a lot of fun & I’m glad operators who leverage Cobalt Strike can now run in-memory C tools!! connormcgarr.github.io/threa…
Little sneak peak with the next guest. This was a friggin amazing convo, and I can't wait to share it with everyone!
Never forget this feeling! @33y0re