dimi on security

Category: Threat Hunting

1. Understanding Primary Refresh Tokens and CVE-2021-33779: How "Pass-the-PRT" was eliminated

   @dimi in [ Threat Hunting ] Thu 30 May 2024

2. mimilib DHCP Server Callout DLL injection

   @dimi in [ Threat Hunting ] Thu 11 May 2017

3. Hunting DNS Server Level Plugin dll injection

   @dimi in [ Threat Hunting ] Tue 09 May 2017

4. Hunting mimikatz with sysmon: monitoring OpenProcess()

   @dimi in [ Threat Hunting ] Sat 29 April 2017