Arazide Yaşamak İkili Dosyalar ve Komut Dosyaları.
https://lolbas-project.github.io/ →
https://lolbas-project.github.io/
ve LOLBİNS'i avlamanın neden bu kadar faydalı olduğu
https://nasbench.medium.com/why-hunting-for-lolbins-is-one-of-the-best-bets-e5e58e1619c2 →
https://nasbench.medium.com/why-hunting-for-lolbins-is-one-of-the-best-bets-e5e58e1619c2
URL, bir Windows uç noktasının konuştuğu ve nedeni
https://learn.microsoft.com/en-gb/windows/privacy/manage-windows-11-endpoints →
https://learn.microsoft.com/en-gb/windows/privacy/manage-windows-11-endpoints
https://learn.microsoft.com/en-gb/windows/privacy/manage-windows-21h2-endpoints →
https://learn.microsoft.com/en-gb/windows/privacy/manage-windows-21h2-endpoints
Gönye ATT&CK ile eşlenen MSRPC'nin kötüye kullanılması
https://github.com/jonny-jhnson/MSRPC-to-ATTACK →
https://github.com/jonny-jhnson/MSRPC-to-ATTACK
Belirsiz Windows Olay Günlüklerinde Adli İyilik Bulma
https://nasbench.medium.com/finding-forensic-goodness-in-obscure-windows-event-logs-60e978ea45a3 →
https://nasbench.medium.com/finding-forensic-goodness-in-obscure-windows-event-logs-60e978ea45a3
Kötü amaçlı yazılımlar tarafından yaygın olarak kullanılan Windows API çağrıları
Sistem Erişim Kontrol Listeleriyle Windows Uç Nokta Güvenliğini Tespit Etme.
https://medium.com/@cryps1s/detecting-windows-endpoint-compromise-with-sacls-cd748e10950 →
https://medium.com/@cryps1s/detecting-windows-endpoint-compromise-with-sacls-cd748e10950