PinnedNyaMeeEainOffSec Experienced Penetration Tester (OSEP) Review -July 2024Although I obtained my OSEP certification on July 11, 2024, I couldn’t write the review because I was on vacation and overloaded at work.Sep 4Sep 4
PinnedNyaMeeEainEach Stages of Attack Kill Chain OPSECPrioritizing operational security (OPSEC) before executing any actions is important because most widely known tools have their behavior…Nov 15, 2023Nov 15, 2023
PinnedNyaMeeEainQueueUserAPC Process Injectionwhat makes QueueUserAPC process injection different?Aug 7, 2023Aug 7, 2023
PinnedNyaMeeEainDotNetToJScriptGadgetToJScript generates .NET serialized gadgets that trigger .NET assembly from HTA, JScript, VBA, and VBScript.We can leverage…Jul 10, 2023Jul 10, 2023
NyaMeeEainAMSI Patching Download Web Cradle without using powershell.exeThe web download cradle PowerShell technique is a sub-technique of the Command and Scripting Interpreter of the PowerShell tactic in the…Aug 3, 2023Aug 3, 2023
NyaMeeEainParent Process ID Spoofing AttackWhat is Parent Process ID (PPID) Spoofing?Jul 14, 2023Jul 14, 2023
NyaMeeEainETW Patching with Custom ShellcodeWhy do we need to care about ETW and AMSI?Jul 11, 2023Jul 11, 2023
NyaMeeEainLinux Style Reverse ShellThis program is a simple TCP program in that the Client establishes a connection over TCP with the server. I use try block to establish a…Jul 10, 2023Jul 10, 2023