February 19, 2020
Adaptive DLL Hijacking
DLL hijacking has been a centerpiece of our operations for many years. During that time…
Read More
June 4, 2019
Re-Animating ActivitySurrogateSelector
In 2017, James Forshaw released a DotNet deserialization gadget which abuses the ActivitySurrogateSelector class from…
Read More
September 10, 2018
An Approach to Bypassing Mail Filters
TLDR By "nulling" the first one or two bytes of a docm file, some spam…
Read More
