Introducing BloodHound Scentry: Accelerate your APM practice. Learn More
Tag

Microsoft

Lateral Movement — SCM and DLL Hijacking Primer

Microsoft

Lateral Movement — SCM and DLL Hijacking Primer

Summary As Defenders increase in maturity, the more they are able to leverage built-in utilities against...

Apr 18, 2019
Read Post
CVE-2018–8212: Device Guard/CLM bypass using MSFT_ScriptResource

Microsoft

CVE-2018–8212: Device Guard/CLM bypass using MSFT_ScriptResource

Device Guard and the enlightened scripting environments that come with it are a lethal combination for...

Oct 10, 2018
Read Post
Threat Mitigation Strategies: Part 2 — Technical Recommendations and Info

Microsoft

Threat Mitigation Strategies: Part 2 — Technical Recommendations and Info

The following information was composed by Andrew Chiles (@andrewchiles), Joe Vest (@joevest) and myself (@minis_io) for...

May 15, 2018
Read Post
Modern Defenses and YOU!

Microsoft

Modern Defenses and YOU!

Part 9 of Advanced Threat Tactics covers a lot of my thoughts on evasion. The ideas in that...

Oct 25, 2017
Read Post