Last Week in Security (LWiS) - 2021-02-15 Dependency Confusion (@alxbrsn), hooking MiniDump (@Mari0Bartolome, @spotheplanet), SharePoint ha... 2021-02-16 13:00:00 | 阅读: 48 | 收藏 | blog.badsectorlabs.com windows remote exploited minidump

Last Week in Security (LWiS) - 2021-02-08 An amazing payload generator (@Tyl0us), DynamicWrapperEx for COM fun (@am0nsec), Skype link spoof... 2021-02-09 11:15:00 | 阅读: 41 | 收藏 | blog.badsectorlabs.com windows security chrome monitoring relaying

Last Week in Security (LWiS) - 2021-02-01 Sudo LPE (@bl4sty), Cobalt Strike patching for evasion (@_xpn_), web bruteforcing (@Xst3nZ), cust... 2021-02-02 13:06:00 | 阅读: 56 | 收藏 | blog.badsectorlabs.com cobalt bypass c2 lockscreen fcomm

Last Week in Security (LWiS) - 2021-01-25 DNS C2 sandwiches (@__Masq__), VBA process dumper (@JohnWoodman15), Windows Printer + NTLM relay... 2021-01-26 13:50:00 | 阅读: 22 | 收藏 | blog.badsectorlabs.com windows security memory nim dumper

Last Week in Security (LWiS) - 2021-01-18 Containerd breakout PoC (@ChaosDatumz), the "glue" principle (@theluemmel), lockscreen bypass (@j... 2021-01-19 13:50:00 | 阅读: 25 | 收藏 | blog.badsectorlabs.com windows bypass beacon shellcode glue

Last Week in Security (LWiS) - 2021-01-11 Thread hijack BOF (@33y0re), anti-debugging tricks (@JustasMasiulis), leaking private YT videos (... 2021-01-12 11:20:00 | 阅读: 55 | 收藏 | blog.badsectorlabs.com security beacon staging microsoft remote

Last Week in Security (LWiS) - 2021-01-04 SolarWinds news and dumping tool (@mubix), Android exploit from an iOS exploiter (@_bazad), C# ru... 2021-01-04 14:01:00 | 阅读: 82 | 收藏 | blog.badsectorlabs.com windows microsoft security memory dumping

Last Week in Security (LWiS) - 2020-12-14 Great breach analysis (@FireEye), HTTPS Signing in Burp (@sanktjodel), Ghidra VirusTotal plugin (... 2020-12-15 13:50:00 | 阅读: 28 | 收藏 | blog.badsectorlabs.com windows fireeye attacker cloud network

Last Week in Security (LWiS) - 2020-12-07 Remote iOS RCE (@i41nbeer), decrypting AutoLogon creds (@secure_sean), the Unprotect Project (@fr... 2020-12-08 11:30:00 | 阅读: 35 | 收藏 | blog.badsectorlabs.com windows cobalt security c2 bypass

Last Week in Security (LWiS) - 2020-11-30 OffSecOps setup (@xenosCR), direct syscalls in CobaltStrike (@brsn76945860), VBA DLL linking (@rd... 2020-12-01 13:50:00 | 阅读: 28 | 收藏 | blog.badsectorlabs.com windows security beacon offsecops cobalt

Last Week in Security (LWiS) - 2020-11-23 New macOS C2 (@cedowens), Nim implant (@NotoriousRebel1), x64 AMSI bypass in VBA (@rd_pentest), V... 2020-11-24 08:30:00 | 阅读: 37 | 收藏 | blog.badsectorlabs.com jarm nim security microsoft youtube

Last Week in Security (LWiS) - 2020-11-16 AV bypasses for common C2s (@ShitSecure), Big Sur firewall bypass (@patrickwardle), 10 vulns in B... 2020-11-17 13:30:00 | 阅读: 44 | 收藏 | blog.badsectorlabs.com windows sur memory machine apollo

Last Week in Security (LWiS) - 2020-11-09 New Mythic agent (@djhohnstein), mobile app interception tools (@EvilPenguin_), CobaltStrike 4.2... 2020-11-11 05:30:00 | 阅读: 35 | 收藏 | blog.badsectorlabs.com cobalt development proxy bypass shellcode

Last Week in Security (LWiS) - 2020-11-02 NAT Slipstreaming by @samykamkar, a new AV evasion method by @jxy__s, Kerberoasting in pure VBA b... 2020-11-03 13:50:00 | 阅读: 30 | 收藏 | blog.badsectorlabs.com windows bypass security malicious network

Last Week in Security (LWiS) - 2020-10-26 LOLBin post from @bohops, new Excel macro tool from @JoeLeonJr, Windows sandbox detection by @Llo... 2020-10-27 08:30:00 | 阅读: 35 | 收藏 | blog.badsectorlabs.com windows software download security

Last Week in Security (LWiS) - 2020-10-19 Ryzen Driver LPE by @h0mbre_, Discord desktop RCE by @kinugawamasato, Azure Pipeline abuse by @Fl... 2020-10-20 12:40:00 | 阅读: 30 | 收藏 | blog.badsectorlabs.com security windows encryption microsoft finfisher

Last Week in Security (LWiS) - 2020-10-12 DLL Hijacking persistence by @duff22b, Unauth RCE against HP Device Manager from @nickstadb, Linu... 2020-10-13 12:20:00 | 阅读: 38 | 收藏 | blog.badsectorlabs.com windows hijacking security remotes

Last Week in Security (LWiS) - 2020-10-05 Sysmon exploit by @0x00dtm, physical smartcard/kerberos attack tools by @_EthicalChaos_, UACMe up... 2020-10-06 12:20:00 | 阅读: 40 | 收藏 | blog.badsectorlabs.com ransomware bypasses security uacme checksec

Last Week in Security (LWiS) - 2020-09-28 Malicious MSI transforms from @_EthicalChaos_, Group Policy caching LPE by @decoder_it, another C... 2020-09-29 12:59:00 | 阅读: 65 | 收藏 | blog.badsectorlabs.com zerologon windows client fortinetssl russia

Last Week in Security (LWiS) - 2020-09-21 Argument injection makes a comeback by @dozernz, persistence with the Dock in macOS by @_D00mfist... 2020-09-22 12:59:00 | 阅读: 33 | 收藏 | blog.badsectorlabs.com lateral injection cobalt windows dcom