Source Byte

Introduction to runtime dynamic hooking in Go by quarkslab blog.quarkslab.com/lets-go-i…

Powershell module that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows machines. github.com/last-byte/Persist…

Rust internals and how Rust code maps to assembly Collection of blog posts by eventhelix eventhelix.com/rust/

Adversarial Attacks on LLMs lilianweng.github.io/posts/2…

Nice introduction to fileless ELF execution using memfd_create() Credits MagisterQuis magisterquis.github.io/2018/…

Attacking an EDR - Part 1 This post is the first of what - we hope - will be a long series of articles detailing some common flaws that can be found on modern EDR products. By no means this will be a complete reference, but will hopefully provide some practical tools to analyze these gargantuesque products and attempt to understand their functionalities from a black box perspective.

sans 506

How does Linux start a process https://iq.thc.org/how-does-linux-start-a-process

Dinosn: A red team tool that assists into extracting/dumping master credentials and/or entries from different password managers. github.com/efchatz/pandora

Batsignal - a macOS LPE in Spotlight gergelykalman.com/no-CVE-bat… > github.com/gergelykalman/no-…

K-means Clustering for Lateral Movement Detection huntandhackett.com/blog/kmea…

Company executives when they're asked if they've been compromised

https://mega.nz/folder/QzkSTKrS#qAks5qwmfL-Si97gxsWHhg about 300 HTB Machines writeups any difficulty / premium

Understanding the PE file format is key to reverse engineering windows executables. If you need help, Dr Josh Stroschein have a playlist with over 4 hours of content covering many of the most important aspects on youtube 👇 ▶️ https://youtube.com/playlist?list=PLHJns8WZXCdstHnLaxcz-CO74fO4Q88_8&feature=shared

لیست اکسپلویت های که APT گروه های چینی از سال 2021 تاکنون گمان میرود استفاده کردند گزارش recorded future https://www.recordedfuture.com/charting-chinas-climb-leading-global-cyber-power

A Beginner’s Guide to Adversary Emulation with Caldera blog.nviso.eu/2023/08/25/a-b… در این پلی لیست یوتیوب هم به ایمولیت رد تیم پرداخته شده (فارسی) و چندین c2 اموزش داده شده https://www.youtube.com/watch?v=MOUNg--_MLk&list=PLwq8--jsXOEkhbmV0Dd_wupwSFHPYF3rO