Tony Lambert
An educator that does security things
HOME
CATEGORIES
TAGS
ARCHIVES
ABOUT
Home
Tags
Tags
Cancel
Tags
.net
2
.net-core
1
7zip
1
accounts
1
active-directory
1
administrators
1
advpack
1
agenttesla
3
aggah
1
appx
1
bazariso
1
bitrat
1
callbacks
1
certutil
1
chrome
1
cobalt-strike
2
csharp
1
dcrat
1
deobfuscation
1
DFIR
1
DNF
1
domain-controllers
1
ducktail
1
edr
1
emotet
2
Empire
1
equationeditor
2
esentutil
1
evasion
1
excel-dna
1
excel4-macro
1
formbook
2
guloader
1
hash
1
hcrypt
1
header
1
hta
2
icedid
1
installers
1
jar
2
java
2
javascript
2
ld_audit
1
ld_preload
3
libpreloadvaccine
1
libprocesshider
1
linux
2
Linux
1
lnk
1
log4jshell
1
macOS
1
macro
2
macros
1
magniber
1
magnitude
1
malware
29
merlin
1
metasploit
1
meterpreter
2
mirai
1
msfvenom
1
mshta
3
msi
3
msitools
1
msword
1
muhstik
1
NetWars
1
njrat
1
nodejs
1
oledump
2
olevba
1
pe
1
pefile
1
Persistence
1
pirrit
1
PKG
1
pkg
1
Plugin
1
postinstall
1
powerpoint
1
powershell
5
ppam
1
process-injection
1
qbot
1
regsvr32
1
rich
1
rtf
1
SANS
1
self-extracting
1
sfx
1
shellcode
1
snip3
1
stealer
1
strrat
1
unix
1
upx
1
vbs
1
vbscript
2
velvetsweatshop
1
virustotal
1
webshell
1
whitelisting
1
windows
4
xll
1
xloader
1
xlsx
1
Yum
1
Recently Updated
AgentTesla From RTF Exploitation to .NET Tradecraft
XLoader/Formbook Distributed by Encrypted VelvetSweatshop Spreadsheets
Analyzing a Stealer MSI using msitools
Aggah PPAM macros renaming MSHTA
Formbook Distributed Via VBScript, PowerShell, and C# Code
Trending Tags
malware
powershell
windows
agenttesla
ld_preload
mshta
msi
.net
cobalt-strike
emotet
Trending Tags
malware
powershell
windows
agenttesla
ld_preload
mshta
msi
.net
cobalt-strike
emotet