| Post | Date |
|---|---|
| A Thousand Sails, One Harbor - C2 Infra on Azure | 29 Sep 2023 |
| Hiding In PlainSight - Indirect Syscall is Dead! Long Live Custom Call Stacks | 29 Jan 2023 |
| Hiding In PlainSight - Proxying DLL Loads To Hide From ETWTI Stack Tracing | 26 Jan 2023 |
| Red Team TTPs Part 2: PUSH 0xPE, CALL 0xLOADER | 08 Oct 2020 |
| Red Team TTPs Part 1: AMSI Evasion | 17 Jul 2019 |
| Shuriken – Android Kernel on Steroids | 26 Dec 2018 |