Last Week in Security (LWiS) - 2021-03-22 The latest/greatest mem dumper BOF (@anthemtotheego), CLR usage logging evasion (@bohops), Window... 2021-03-23 11:30:00 | 阅读: 56 | 收藏 | blog.badsectorlabs.com windows security rare deception loader

Last Week in Security (LWiS) - 2021-03-15 Bloodhound Enterprise (@_wald0), reproducing ProxyLogon (@amlweems), Wireshark 1-click RCE (@posi... 2021-03-16 12:59:00 | 阅读: 55 | 收藏 | blog.badsectorlabs.com lfs exchange windows microsoft proxylogon

Last Week in Security (LWiS) - 2021-03-08 Exchange RCE [ProxyLogon] (@orange_8361), Windows DNS RCE [SIGRed] (@chompie1337), C# AV Bypass (... 2021-03-09 13:04:00 | 阅读: 58 | 收藏 | blog.badsectorlabs.com cobalt windows bypass loader orange

Last Week in Security (LWiS) - 2021-03-01 JSON interop vulns (@theBumbleSec), PHPWind RCE presentation (@orange_8361), infra automation (@c... 2021-03-02 13:50:00 | 阅读: 26 | 收藏 | blog.badsectorlabs.com shellcode injection bypass security

Last Week in Security (LWiS) - 2021-02-22 2021-02-23 13:58:00 | 阅读: 49 | 收藏 | blog.badsectorlabs.com shellcode memory bofs security

Last Week in Security (LWiS) - 2021-02-15 Dependency Confusion (@alxbrsn), hooking MiniDump (@Mari0Bartolome, @spotheplanet), SharePoint ha... 2021-02-16 13:00:00 | 阅读: 52 | 收藏 | blog.badsectorlabs.com windows remote exploited minidump

Last Week in Security (LWiS) - 2021-02-08 An amazing payload generator (@Tyl0us), DynamicWrapperEx for COM fun (@am0nsec), Skype link spoof... 2021-02-09 11:15:00 | 阅读: 44 | 收藏 | blog.badsectorlabs.com windows security chrome monitoring relaying

Last Week in Security (LWiS) - 2021-02-01 Sudo LPE (@bl4sty), Cobalt Strike patching for evasion (@_xpn_), web bruteforcing (@Xst3nZ), cust... 2021-02-02 13:06:00 | 阅读: 59 | 收藏 | blog.badsectorlabs.com cobalt bypass c2 lockscreen fcomm

Last Week in Security (LWiS) - 2021-01-25 DNS C2 sandwiches (@__Masq__), VBA process dumper (@JohnWoodman15), Windows Printer + NTLM relay... 2021-01-26 13:50:00 | 阅读: 25 | 收藏 | blog.badsectorlabs.com windows security memory nim dumper

Last Week in Security (LWiS) - 2021-01-18 Containerd breakout PoC (@ChaosDatumz), the "glue" principle (@theluemmel), lockscreen bypass (@j... 2021-01-19 13:50:00 | 阅读: 28 | 收藏 | blog.badsectorlabs.com windows bypass beacon shellcode glue

Last Week in Security (LWiS) - 2021-01-11 Thread hijack BOF (@33y0re), anti-debugging tricks (@JustasMasiulis), leaking private YT videos (... 2021-01-12 11:20:00 | 阅读: 58 | 收藏 | blog.badsectorlabs.com security beacon staging microsoft remote

Last Week in Security (LWiS) - 2021-01-04 SolarWinds news and dumping tool (@mubix), Android exploit from an iOS exploiter (@_bazad), C# ru... 2021-01-04 14:01:00 | 阅读: 84 | 收藏 | blog.badsectorlabs.com windows microsoft security memory dumping

Last Week in Security (LWiS) - 2020-12-14 Great breach analysis (@FireEye), HTTPS Signing in Burp (@sanktjodel), Ghidra VirusTotal plugin (... 2020-12-15 13:50:00 | 阅读: 31 | 收藏 | blog.badsectorlabs.com windows fireeye attacker cloud network

Last Week in Security (LWiS) - 2020-12-07 Remote iOS RCE (@i41nbeer), decrypting AutoLogon creds (@secure_sean), the Unprotect Project (@fr... 2020-12-08 11:30:00 | 阅读: 39 | 收藏 | blog.badsectorlabs.com windows cobalt security c2 bypass

Last Week in Security (LWiS) - 2020-11-30 OffSecOps setup (@xenosCR), direct syscalls in CobaltStrike (@brsn76945860), VBA DLL linking (@rd... 2020-12-01 13:50:00 | 阅读: 31 | 收藏 | blog.badsectorlabs.com windows security beacon offsecops cobalt

Last Week in Security (LWiS) - 2020-11-23 New macOS C2 (@cedowens), Nim implant (@NotoriousRebel1), x64 AMSI bypass in VBA (@rd_pentest), V... 2020-11-24 08:30:00 | 阅读: 40 | 收藏 | blog.badsectorlabs.com jarm nim security microsoft youtube

Last Week in Security (LWiS) - 2020-11-16 AV bypasses for common C2s (@ShitSecure), Big Sur firewall bypass (@patrickwardle), 10 vulns in B... 2020-11-17 13:30:00 | 阅读: 49 | 收藏 | blog.badsectorlabs.com windows sur memory machine apollo

Last Week in Security (LWiS) - 2020-11-09 New Mythic agent (@djhohnstein), mobile app interception tools (@EvilPenguin_), CobaltStrike 4.2... 2020-11-11 05:30:00 | 阅读: 41 | 收藏 | blog.badsectorlabs.com cobalt development proxy bypass shellcode

Last Week in Security (LWiS) - 2020-11-02 NAT Slipstreaming by @samykamkar, a new AV evasion method by @jxy__s, Kerberoasting in pure VBA b... 2020-11-03 13:50:00 | 阅读: 33 | 收藏 | blog.badsectorlabs.com windows bypass security malicious network

Last Week in Security (LWiS) - 2020-10-26 LOLBin post from @bohops, new Excel macro tool from @JoeLeonJr, Windows sandbox detection by @Llo... 2020-10-27 08:30:00 | 阅读: 38 | 收藏 | blog.badsectorlabs.com windows software download security