Lmst
Login
Hexacorn :donor: :verified:

Red brain, Blue Fingers

Hexacorn :donor: :verified:hexacorn@infosec.exchange
2025-07-05

Beyond good ol’ Run key, Part 148

hexacorn.com/blog/2025/07/05/b

Hexacorn :donor: :verified:hexacorn@infosec.exchange
2025-07-05

Beyond good ol’ Run key, Part 147

hexacorn.com/blog/2025/07/05/b

Hexacorn :donor: :verified:hexacorn@infosec.exchange
2025-06-16

@jernej__s same dir where the .exe is, as the .exe uses LoadLibrary (not LoadLibraryEx); so, if you copy the .exe to a diff. path and execute from there, it will work too

Hexacorn :donor: :verified:hexacorn@infosec.exchange
2025-06-15

VMwareResolutionSet.exe VMwareResolutionSet.dll lolbin

hexacorn.com/blog/2025/06/15/v

Hexacorn :donor: :verified:hexacorn@infosec.exchange
2025-06-14

wermgr.exe boot offdmpsvc.dll lolbin

hexacorn.com/blog/2025/06/14/w

#lolbin

Hexacorn :donor: :verified:hexacorn@infosec.exchange
2025-06-14

wpr.exe boottrace phantom dll axeonoffhelper.dll lolbin

hexacorn.com/blog/2025/06/14/w

#lolbin

Hexacorn :donor: :verified:hexacorn@infosec.exchange
2025-05-31

mscoree.dll, RunDll32ShimW lolbin
hexacorn.com/blog/2025/05/31/m

Hexacorn :donor: :verified:hexacorn@infosec.exchange
2025-05-18

Shell32.dll, #44 lolbin

hexacorn.com/blog/2025/05/18/s

Hexacorn :donor: :verified:hexacorn@infosec.exchange
2025-05-02

Minority (forensic) report aka defending forward w/o hacking back

hexacorn.com/blog/2025/05/02/m

#dfir

Hexacorn :donor: :verified:hexacorn@infosec.exchange
2025-03-30

Malware Source code string extraction

hexacorn.com/blog/2025/03/30/m

Hexacorn :donor: :verified:hexacorn@infosec.exchange
2025-03-08

Hunting for the warez & other dodgy stuff people install / download, part 2

hexacorn.com/blog/2025/03/08/h

Hexacorn :donor: :verified:hexacorn@infosec.exchange
2025-03-01

Hunting for the warez & other dodgy stuff people install / download, part 1

hexacorn.com/blog/2025/03/01/h

Hexacorn :donor: :verified:hexacorn@infosec.exchange
2025-02-22

Good Exports are real

hexacorn.com/blog/2025/02/22/g

Hexacorn :donor: :verified:hexacorn@infosec.exchange
2025-02-22

Optimizing the regexes, or not

hexacorn.com/blog/2025/02/22/o

Hexacorn :donor: :verified:hexacorn@infosec.exchange
2025-02-21

The rapidly changing geopolitics and its inevitable effect on cyber

hexacorn.com/blog/2025/02/21/t

Hexacorn :donor: :verified:hexacorn@infosec.exchange
2025-02-02

Update your playbooks folks

EPT=Elongated Persistent Threat

Hexacorn :donor: :verified:hexacorn@infosec.exchange
2025-01-25

Being a tool while using a tool

hexacorn.com/blog/2025/01/25/b

#dfir

Hexacorn :donor: :verified:hexacorn@infosec.exchange
2024-12-31

Clean hash set - 12M rows

hexacorn.com/blog/2024/12/31/c

Hexacorn :donor: :verified:hexacorn@infosec.exchange
2024-12-31

Smuggling payloads and tools in, using WIM images

hexacorn.com/blog/2024/12/31/s

#dfir

Hexacorn :donor: :verified:hexacorn@infosec.exchange
2024-12-28

WIMMOUNTDATA ADS

hexacorn.com/blog/2024/12/28/w

#dfir

Client Info

Server: https://mastodon.social
Version: 2025.04
Repository: https://github.com/cyevgeniy/lmst