Tools

Microsoft Tools & Hacks

Load and Inject Malicious DLL Using Microsoft Tools

Attackers can leverage legitimate Microsoft signed binaries to load and inject malicious DLLs into running processes, effectively bypassing application whitelisting and endpoint security.

Microsoft Tools & Hacks

Hide Malware Using Microsoft HTML Interpreters

Microsoft HTML Application Host (mshta.exe) and other HTML interpreters can be leveraged by attackers to execute malicious scripts while evading traditional security controls.

Malware Analysis

Virtual Machine Introspection in Malware Analysis

Virtual Machine Introspection (VMI) provides a powerful approach to malware analysis by monitoring guest OS behavior from the hypervisor level, making it invisible to the …