D/Invoke & GadgetToJScript Blog /September 6, 2021 /I’m sure the subject of co... 2021-09-06 23:24:20 | 阅读: 113 | 收藏 | rastamouse.me dinvoke marshal shellcode

Protected: .NET Reflection and Disposable AppDomains PatreonMany thanks to my Black Hat patrons:yue chen, Raul Carmona, eon, Dave, mut8nt, Joel Tomas... 2021-08-17 22:58:09 | 阅读: 57 | 收藏 | rastamouse.me holbrook kovert patrons mut8nt lény

.NET Reflection and Disposable AppDomains Blog /August 17, 2021 /Disclaimer: I didn’t come u... 2021-08-17 22:58:09 | 阅读: 33 | 收藏 | rastamouse.me appdomain loaded payload rubeus

NTLM Relaying via Cobalt Strike – Rasta Mouse Blog /July 29, 2021 /NTLM relaying is a popular att... 2021-07-31 22:21:21 | 阅读: 117 | 收藏 | rastamouse.me client portbender loaded machine beacon

Exploring Process Injection OPSEC – Part 2 Blog /July 5, 2021 /In Part 1, we reviewed the v... 2021-07-05 22:50:33 | 阅读: 61 | 收藏 | rastamouse.me shellcode hmemory

Infrastructure as Code (Terraform + Ansible) Blog /June 21, 2021 /If you’ve any experience with... 2021-06-21 22:55:18 | 阅读: 77 | 收藏 | rastamouse.me covenant rasta redirector security ssh

Cobalt Strike Spawn & Tunnel Blog /June 12, 2021 /Cobalt Strike 4.2 introduced a... 2021-06-13 06:10:32 | 阅读: 126 | 收藏 | rastamouse.me 4444 spunnel reverse beacon payload

Exploring Process Injection OPSEC – Part 1 Blog /June 6, 2021 /This is the first in a short se... 2021-06-07 04:15:39 | 阅读: 56 | 收藏 | rastamouse.me shellcode memory rwx injection beacon

Bypass In-memory Integrity Checking Blog /June 4, 2021 /In the Memory Patching AMSI Byp... 2021-06-04 21:31:11 | 阅读: 58 | 收藏 | rastamouse.me rubeus backup bypass memory

Memory Patching AMSI Bypass Blog /June 3, 2021 /This post is a replacement for... 2021-06-04 03:05:46 | 阅读: 127 | 收藏 | rastamouse.me rubeus memory amsicontext powershell

Process Injection using DInvoke Back in June, I posted a short update on my shared blog regarding t... 2020-07-19 09:00:00 | 阅读: 254 | 收藏 | rastamouse.me openprocess shellcode

SharpC2 Project Outcomes Solution Demo... 2020-05-10 09:00:00 | 阅读: 169 | 收藏 | rastamouse.me agents c2

GadgetToJScript Back in April 2017, James Forshaw (hail) released a tool called DotN... 2020-02-19 09:00:00 | 阅读: 355 | 收藏 | rastamouse.me payload g2js windows assemblies

Covenant Tasks 101 Hello World Parameters Reference... 2019-12-28 09:00:00 | 阅读: 129 | 收藏 | rastamouse.me covenant grunttask helloworld

MWR Labs: C3 - First Look External C2 What? Why? How?... 2019-09-03 09:00:00 | 阅读: 226 | 收藏 | rastamouse.me c2 client beacon cobalt

TikiService Service Binary Aggressor Demo... 2019-08-28 09:00:00 | 阅读: 67 | 收藏 | rastamouse.me tikiservice shellcode tikitorch cna csexec

Covenant, Donut, TikiTorch Donut Injection Test TikiTorch Conclusion Cov... 2019-08-20 09:00:00 | 阅读: 180 | 收藏 | rastamouse.me shellcode donut gruntstager injection grunt

The Return of Aggressor TikiSpawn & TikiLoader Mods Dynamic XML... 2019-06-26 09:00:00 | 阅读: 61 | 收藏 | rastamouse.me tikispawn shellcode msbuild tikiloader ppid

TikiVader Usage I’ve added a new experimental project to TikiTorch,... 2019-06-15 09:00:00 | 阅读: 48 | 收藏 | rastamouse.me tikivader evade millage tikitorch

TikiSpawn & MSBuild XML Closing The main... 2019-06-13 09:00:00 | 阅读: 183 | 收藏 | rastamouse.me tikispawn microsoft msbuild usingtask windows