Built some automation to help with dumping cookies using Chromium's remote debugger. This technique works against Chromium browsers (Google Chrome, Microsoft Edge, etc.) on any OS! I dig into how the technique works and present my implementation posts.specterops.io/hands-in…
backdooring MSBuild runs without new processes and ReadProcessMemory? ... sure thing ;-) same thing works for Visual Studio (same location, same DLL) and a lot of other .NET assemblies ...
a12d404.net/ranting/2021/01/…
Published another old(er) blog post:
A Windows Authorization Guide
csandker.io/2018/06/14/AWind…
This one covers the Windows Authorization process In and Out, from Basic Access checks to Primary & Impersonation Tokens...
Including this tricky PtH question (see screenshot below):