blog category

Research & Tradecraft

The Defender’s Guide to the Windows Registry

It’s dangerous to defend the registry alone! Take this! Authors: Luke Paine & Jonathan Johnson Introduction Welcome to...

By: Luke Paine

Oct 31, 2022 • 12 min read

Read Post

Research & Tradecraft

Ghostwriter v3.1 Now Available

Ghostwriter v3.1 is now available! This release introduces several new features along with a host of...

By: Christopher Maddalena

Oct 19, 2022 • 5 min read

Read Post

Research & Tradecraft

Prioritization of the Detection Engineering Backlog

Written by Joshua Prager and Emily Leidy Introduction Strategically maturing a detection engineering function requires us to...

By: joshua prager

Oct 5, 2022 • 17 min read

Read Post

Research & Tradecraft

Part 7: Synonyms

By: Jared Atkinson

Sep 29, 2022 • 23 min read

Read Post

Research & Tradecraft

Part 6: What is a Procedure?

By: Jared Atkinson

Sep 8, 2022 • 16 min read

Read Post

Research & Tradecraft

Automating Azure Abuse Research — Part 2

By: Andy Robbins

Aug 31, 2022 • 8 min read

Read Post

Research & Tradecraft

Part 5: Expanding the Operation Graph

By: Jared Atkinson

Aug 18, 2022 • 17 min read

Read Post

Research & Tradecraft

Part 4: Compound Functions

By: Jared Atkinson

Aug 16, 2022 • 12 min read

Read Post

Research & Tradecraft

Part 3: Expanding the Function Call Graph

By: Jared Atkinson

Aug 9, 2022 • 15 min read

Read Post

Prev 1 … 13 14 15 16 17 … 31 Next

blog category

Research & Tradecraft

By: Luke Paine

Oct 31, 2022 • 12 min read

By: Christopher Maddalena

Oct 19, 2022 • 5 min read

By: joshua prager

Oct 5, 2022 • 17 min read

By: Jared Atkinson

Sep 29, 2022 • 23 min read

By: Jared Atkinson

Sep 8, 2022 • 16 min read

By: Andy Robbins

Aug 31, 2022 • 8 min read

By: Jared Atkinson

Aug 18, 2022 • 17 min read

By: Jared Atkinson

Aug 16, 2022 • 12 min read

By: Jared Atkinson

Aug 9, 2022 • 15 min read

Sign Up For Updates From SpecterOps