Archive - m3rcer - Hacking/Security Blog

2024

Breaking through Defender's Gates - Disabling Tamper Protection and other Defender components

2023

Testing EDR boundaries - Experiments in modern MDE Evasion and LSASS Dumping Tactics

Stealing Microsoft Office tokens in memory

Bypassing ETW, Sysmon, EventLog and Command-Line-Argument Spoofing

2022

A Practical Approach to Windows HTTPS Interception for Engagements

Building A Local SMTP Server To Bypass Modern Spam Filters

Integrating Direct Syscalls in Cobalt Strike's Artifact Kit

APT Emulation - Nobellium

CRTO (Red Team Ops) Review - A Cobalt Strike Battle Ground

4 Ways to Abuse Constrained Delegation

2021

Automating OpenVAS

Automating Nexpose