Why bother with argv[0]? Command lines are weird. Windows is known for this [1], but as will become apparent, mo... 2024-9-3 08:0:0 | 阅读: 5 | 收藏 | @Wietze - Blog - www.wietzebeukema.nl software security windows certutil executions

Save the Environment (Variable) Environment variablesEnvironment variables were introduced in the late 1970s in Unix... 2022-8-16 08:0:0 | 阅读: 36 | 收藏 | www.wietzebeukema.nl systemroot microsoft windows office16 propsys

Windows Command-Line Obfuscation Command-line arguments He who wishes to be obeyed must know how to command. Machi... 2021-07-23 09:00:00 | 阅读: 56 | 收藏 | www.wietzebeukema.nl windows wevtutil urlcache whilst certutil

Hijacking DLLs in Windows DLL HijackingFirst of all, let’s get the definition out of the way. DLL hijacking is,... 2020-06-22 09:00:00 | 阅读: 32 | 收藏 | www.wietzebeukema.nl dllmain netsh sspicli wdscore propsys

PowerShell Obfuscation using SecureString PowerShell obfuscationIf you are a threat hunter, you will be well familiar with Power... 2020-01-20 09:00:00 | 阅读: 19 | 收藏 | www.wietzebeukema.nl powershell malicious convertto passwords

Spoofing Google Search results Update - Two days after the publication of this blog post, Google seems to have fixed... 2019-01-07 09:00:00 | 阅读: 12 | 收藏 | www.wietzebeukema.nl mccartney kgmid paul answers rolling