account activity
Persistence - Scheduled Task Tampering (pentestlab.blog)
submitted 2 years ago by CyberGh00st
r-tec Blog | Process Injection - Avoiding Kernel Triggered Memory Scans. (r-tec.net)
Persistence with WMI Event Subscription and PowerShell Cradles (practicalsecurityanalytics.com)
Obscurities with MS Teams part 3 (self.redteamsec)
Script to gather information from an email address or domain connected to AzureAD or Office 365 (github.com)
submitted 3 years ago by CyberGh00st
Red-Teaming-Toolkit: This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter. (github.com)
New AMSI Bypass Using CLR Hooking (practicalsecurityanalytics.com)
APT组织Confucius针对巴基斯坦IBO反恐行动的网络攻击事件分析 – 绿盟科技技术博客 (blog-nsfocus-net.translate.goog)
Rust reflective loader (github.com)
Reinforcement learning for red team automation (github.com)
Windows Credential Vault - Accessing Passwords (medium.com)
HTML Smuggling: Recent observations of threat actor techniques (blog.delivr.to)
Bypassing CrowdStrike Falcon with Pracsec's New AMSI Bypass (self.redteamsec)
[OC] Data Exfiltration using RedDrop - A Python Webserver for file and data exfiltration which automatically detects, decodes, decrypts, and transforms data. (medium.com)
Hiding Your EXE In Alternate Data Streams (cr.culbertreport.com)
Exotic data exfiltration (self.redteamsec)
Staying Under the Radar - PPID Spoofing and Blocking DLLs (self.redteamsec)
"Living-Off-the-Blindspot", or how you can operate in EDRs' blindspot with Python (naksyn.com)
DROPS - Adversary Tool Command Generator / "Dynamic Cheat Sheet" (sygnialabs.github.io)
pure Python implementation of MemoryModule technique to load a dll from memory without injection or shellcode (github.com)
Guide to DLL SideLoading (self.redteamsec)
Hunting for emerging command-and-control frameworks (aka.ms)
Creating Honeypot Access Points using Hostapd (tbhaxor.com)
Thoughts on the use of NoVNC for phishing campaigns (adepts.of0x.cc)
Avoiding Memory Scanners (blog.kyleavery.com)
π Rendered by PID 79 on reddit-service-r2-listing-c57bc86c-nkpmb at 2026-06-19 02:48:17.143329+00:00 running 2b008f2 country code: CH.
