This post is by a banned member (Redm00n) - Unhide
OP 16 July, 2020 - 04:51 PM
Reply
This isn't meant to be a drop-in, undetectable, malicious, weaponized shell ;) , 2020 new tool
EDR / AV evasion- Uses a service that is not commonly known and not monitored or flagged as suspicious by EDR vendors.
- Uses the Windows thread pool API to do setup, making stacks harder to read, offloading work through multiple threads, and avoiding easy "hints" that something suspicious is happening.
Hidden Content
You must register or login to view this content.
DON'T LEACH , GIVE LIKES
This post is by a banned member (632dbc9079) - Unhide
16 July, 2020 - 11:20 PM
Reply
[font][font]..12345[/font][/font]
This post is by a banned member (terminat77) - Unhide
05 August, 2020 - 10:57 AM
Reply
Interested to Purchase this
This post is by a banned member (Glizzeh) - Unhide
05 August, 2020 - 11:02 AM
Reply
This post is by a banned member (roshiru) - Unhide
29 December, 2020 - 03:48 PM
Reply
[font]damn! lookin good![/font]
This post is by a banned member (PeyPey) - Unhide
15 January, 2021 - 03:15 AM
Reply
Merci pour le partage, Bro.
This post is by a banned member (imbadlol) - Unhide
16 February, 2021 - 04:18 PM
Reply
(16 July, 2020 - 04:51 PM)Redm00n Wrote: Show MoreThis isn't meant to be a drop-in, undetectable, malicious, weaponized shell ;) , 2020 new tool
EDR / AV evasion- Uses a service that is not commonly known and not monitored or flagged as suspicious by EDR vendors.
- Uses the Windows thread pool API to do setup, making stacks harder to read, offloading work through multiple threads, and avoiding easy "hints" that something suspicious is happening.
DON'T LEACH , GIVE LIKES
thxxxxxxx
This post is by a banned member (koko974) - Unhide
13 January, 2024 - 04:26 PM
Reply
|
