Detecting Embedded Content in OOXML Documents
August 18 2021On Advanced Practices, we are always looking for new ways to find malicious activity and track adversaries over time. Today we’re sharing a technique we use to...
Read moreDetecting Embedded Content in OOXML Documents
August 18 2021On Advanced Practices, we are always looking for new ways to find malicious activity and track adversaries over time. Today we’re sharing a technique we use to...
Read moreIn this blog post we will describe: How ...
Read moreIn this blog post we will describe: How ...
Read moreUPDATE (Mar. 18): Mandiant recently observed targeted threat actors modifying mailbox folder permissions of user mailboxes to maintain persistent access to the...
Read moreUPDATE (Mar. 18): Mandiant recently observed targeted threat actors modifying mailbox folder permissions of user mailboxes to maintain persistent access to the...
Read moreIn December 2020, FireEye uncovered and publicly disclosed a widespread attacker campaign that is being tracked as UNC2452. In some, but not all, of the intrusions associated...
Read moreWOW64!Hooks: WOW64 Subsystem Internals and Hooking Techniques
November 9 2020Microsoft is known for their backwards compatibility. When they rolled out the 64-bit variant of Windows years ago they needed to provide compatibility with existing 32-bit applications....
Read moreWOW64!Hooks: WOW64 Subsystem Internals and Hooking Techniques
November 9 2020Microsoft is known for their backwards compatibility. When they rolled out the 64-bit variant of Windows years ago they needed to provide compatibility with existing 32-bit applications....
Read moreWOW64!Hooks: WOW64 Subsystem Internals and Hooking Techniques
November 9 2020Microsoft is known for their backwards compatibility. When they rolled out the 64-bit variant of Windows years ago they needed to provide compatibility with existing 32-bit applications....
Read more
Recent Comments