Red Teaming and Malware Analysis

About
Red Teaming
Cheat Sheet
Active Directory 101
Fuzzing and Web
Initial Foothold
- Browser In The Browser (BITB) Attack
- Phishing with Office
  Weaponizing XLM 4.0 macros
Privilege Escalation (Privesc)
Lateral Movement (Pivoting)
- From Windows VPN + Kali VPN + DC
  By using Proxifier
Persistence
Command and Control (C&C)
- CobaltStrike 101
  Pivoting DMZ: weevely + ngrok + CS Pivot COMBO via Linux
  Extras + Plugins
  Resources
Data Exfiltration
- Extracting certs/private keys from Windows using mimikatz and intercepting calls with burpsuite
CVE & Exploits / CTF
Tools
Resources
Pwnage
Malware Analysis
Unpacking
Basic tips
Malware instrumentation with frida
Tools
Resources
Mobile
IoT / Reverse / Firmware

Powered by GitBook

On this page

Was this helpful?

Basic tips

PreviousUnpacking NextMalware instrumentation with frida

Last updated 3 years ago

Find mutex Windows

Download WinObj from https://docs.microsoft.com/en-us/sysinternals/downloads/winobj
Unzip and run
Click menu File | Run as administrator
Click sessions in left hand navigation pane
Click on sub nodes until one displays BaseNamedObjects
Click on 'BaseNamedObjects'