RedirectThread: Building more evasive primitives to use as alternative for existing process injection techniques
#processinjection
My new blog for CPR: introducing Waiting Thread Hijacking - a remote process injection technique targeting waiting threads: https://research.checkpoint.com/2025/waiting-thread-hijacking // #ProcessInjection
Just read this amazing article about #processinjection technique #doppelganger
This one here gives a detailed and understandable inside of this technique for #redteam and #blueteam equally.
It's been quite a bit since I have been on here. A small update:
- I have a security analyst working with me, the help has been great!
- I going back to Penn State for the third time to do a security talk about process injection!
- I am prepping our annual penetration tests against our web app!
I continue to grow and learn more about my field in Security and am so grateful for the fun I get to have!
#security #updates #gratitude #processinjection #pennstate
A good read about Process injection techniques.
In my new blog for #CheckPointResearch I propose a new injection technique, using the Thread Name API - check it out! 💙 : https://research.checkpoint.com/2024/thread-name-calling-using-thread-name-for-offense // #ThreadNameCalling #processInjection
Abusing Windows Internals - I have just completed this room! Check it out: https://tryhackme.com/room/abusingwindowsinternals #tryhackme #Windows #Evasion #ProcessInjection #RedTeam #PortableExecutable #DLLInjection #PEInjection #ProcessHollowing #abusingwindowsinternals via @RealTryHackMe
Well, isn't this just "punch you in the gut while I rip your teeth out" peachy. Never thought a #PoolParty would be such a downer #Hacking #ProcessInjection
https://securityaffairs.com/155464/hacking/pool-party-bypassing-edr.html
A couple of blog posts for learning about Linux process injection (specifically sshd injection for credential harvesting)
https://blog.xpnsec.com/linux-process-injection-aka-injecting-into-sshd-for-fun/
A couple of quick blog posts for learning about Linux process injection
(specifically sshd injection for credential harvesting)
https://blog.xpnsec.com/linux-process-injection-aka-injecting-into-sshd-for-fun/
Introduction to Process Hollowing, including how to detect it: https://www.trustedsec.com/blog/the-nightmare-of-proc-hollows-exe/
A couple of nice blog posts for learning about Linux process injection
(specifically sshd injection for credential harvesting)
https://blog.xpnsec.com/linux-process-injection-aka-injecting-into-sshd-for-fun/
https://jm33.me/sshd-injection-and-password-harvesting.html
#sshd #processinjection #redteam #infosec #cybersecurity #Linux
A couple of nice blog posts for learning about Linux process injection
(specifically sshd injection for credential harvesting)
https://blog.xpnsec.com/linux-process-injection-aka-injecting-into-sshd-for-fun/
https://jm33.me/sshd-injection-and-password-harvesting.html
#sshd #processinjection #redteam #infosec #cybersecurity #Linux
n00b question on #malware and #processinjection : how does malware that performs process injection pick the target process to inject? are there processes targeted more often than others?
Client Info
Server: https://mastodon.social
Version: 2025.04
Repository: https://github.com/cyevgeniy/lmst