EDR evasion

Waiting Thread Hijacking: A Stealthier Code Injection Technique Thread Hijacking Process Injection

Thread Hijacking Process Injection

Waiting Thread Hijacking: A Stealthier Code Injection Technique

Ddos April 16, 2025

Process injection is a technique frequently employed by attackers, with its variations appearing in numerous malware. This...

EDRsandblast Exploited: How Attackers are Weaponizing Open-Source Code AV/EDR bypass tool

AV/EDR bypass tool

EDRsandblast Exploited: How Attackers are Weaponizing Open-Source Code

Ddos November 3, 2024

Unit 42 researchers recently uncovered the toolkit of an extortionist during an investigation where a threat actor...

China-Linked GhostEmperor Resurfaces: Enhanced Demodex Rootkit Targets Southeast Asia

Demodex rootkit

China-Linked GhostEmperor Resurfaces: Enhanced Demodex Rootkit Targets Southeast Asia

Ddos July 18, 2024

The notorious threat group GhostEmperor has resurfaced with an updated version of its sophisticated Demodex rootkit, according...

SysWhispers3: AV/EDR evasion via direct system calls

AV/EDR evasion

SysWhispers3: AV/EDR evasion via direct system calls

Ddos March 9, 2022

SysWhispers3 SysWhispers helps with evasion by generating header/ASM files implants can use to make direct system calls....