Ever had trouble signing your drivers with leaked expired EV certificates? I made a fix for that:
Conversation
Weird, I expected a .bat file which throws system time back a few years.
1
1
Show replies
Does signing with an expired cert work well? Idk why i assumed that expired=revoked as well.
1
Discover more
Sourced from across Twitter
A map of essential techniques to bypass AVs
#redteam
3
74
224
Show this thread
Full Driploader port in Nim finally finished 🔥🙂The first start for ETWti / Kernel Callback based detection bypasses from userland. 🧐
2
20
79
Show this thread
When you have to deal with EDR that monitors RtlCreateUserThread, SetThreadContext, NtQueueApcThread, SetThreadContext, CreateRemoteThread, RtlCreateUserThread and QueueUserAPC, there's an insane technique called Threadless Injection by github.com/CCob/Threadles
1
26
86
for the younger audience :-)
on tunnelling, and calling code from within a OS code (gadget-like) - ~1996-7
stason.org/TULARC/securit
web.textfiles.com/ezines/XINE/xi
2
9
20








