Process Ghosting to avade AV

by abrongo - 16 June, 2021 - 10:21 AM

This post is by a banned member (abrongo) - Unhide

abrongo

1
Posts

1
Threads

4 Years of service

OP 16 June, 2021 - 10:21 AM

Read this

What you need to know about Process Ghosting, a new executable image tampering attack | Elastic Blog

asking if someone already wrote or thinking to do something able to implement this one.

Seems interesting for evade AV

Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account Sign up for a new account in our community. It's easy! Register a new account	or	Sign in Already have an account? Sign in here. Sign in now

Forum Jump:

Users browsing this thread: 1 Guest(s)