This document containing the research that I performed throughout the year, while working on my project.
This document defines my project, sets out what I want to achieve and contains my project plan.
This document is the final report the demonstrates what I have learned and what I developed over the course of my project.
An introduction to the lab implementation and the various tools and technologies that are included.
T1027: Obfuscated Files or Information
This lab covers how obfuscation is commonly used to avoid detection.
T1059: Command and Scripting Interpreter
This lab covers how adversaries often use commands executed through shells such as PowerShell or CMD.
T1047: Windows Management Instrumentation
This lab covers how the WMI is often used during the reconnaissance phase of an attack.
T1105: Ingress Tool Transfer
This lab covers how adversaries often import malicious DLLs and other tools that will facilitate further exploits and persistence.
T1218: Signed Binary Proxy Execution
This exercise covers how Rundll32 can be abused to execute malicious DLLs.
Copyright © 2022 - All Rights Reserved
Template by OS Templates