Hashed and rehashed a tale of Goodware hashes https://dansec.medium.com/hashed-and-rehashed-a-tale-of-goodware-hashes-61da19c65528

Process Injection - Avoiding Kernel Triggered Memory Scans https://www.r-tec.net/r-tec-blog-process-injection-avoiding-kernel-triggered-memory-scans.html

Modern Asian APT groups’ tactics, techniques and procedures (TTPs) https://securelist.com/modern-asia-apt-groups-ttp/111009/

Exploring Impersonation through the Named Pipe Filesystem Driver https://jsecurity101.medium.com/exploring-impersonation-through-the-named-pipe-filesystem-driver-15f324dfbaf2

AI-Powered Fuzzing: Breaking the Bug Hunting Barrier https://security.googleblog.com/2023/08/ai-powered-fuzzing-breaking-bug-hunting.html?m=1

Boot Unguarded: x86 Trust Anchor Downfalls to The Leaked OEM Internal Tools and Signing Keys https://hardenedlinux.org/blog/2023-09-07-boot-unguarded-x86-trust-anchor-downfalls-to-the-leaked-oem-internal-tools-and-signing-keys/

Bypass EDR Hooks by patching NT API stub, and resolving SSNs and syscall instructions at runtime https://github.com/TheD1rkMtr/UnhookingPatch

Hypervisor Detection with SystemHypervisorDetailInformation https://medium.com/@matterpreter/hypervisor-detection-with-systemhypervisordetailinformation-26e44a57f80e

StripedFly: Perennially flying under the radar https://securelist.com/stripedfly-perennially-flying-under-the-radar/110903/?utm_source=twitter&utm_medium=social&utm_campaign=gl_SAS-JE_je0066&utm_content=link&utm_term=gl_twitter_organic_izosxwds3vx

Persistent Threat: New Exploit Puts Thousands of GitHub Repositories and Millions of Users at Risk https://checkmarx.com/blog/persistent-threat-new-exploit-puts-thousands-of-github-repositories-and-millions-of-users-at-risk/

A Big Look at Security in OpenAPI https://blog.liblab.com/a-big-look-at-security-in-openapi/

CacheWarp is a new software fault attack on AMD SEV-ES and SEV-SNP. It allows attackers to hijack control flow, break into encrypted VMs, and perform privilege escalation inside the VM. https://cachewarpattack.com/

Updated version of System Management Mode backdoor for UEFI based platforms: old dog, new tricks https://github.com/Cr4sh/SmmBackdoorNg

0-days exploited by commercial surveillance vendor in Egypt https://blog.google/threat-analysis-group/0-days-exploited-by-commercial-surveillance-vendor-in-egypt/

EDRaser - Tool For Remotely Deleting Access Logs, Windows Event Logs, Databases, And Other Files https://www.kitploit.com/2023/09/edraser-tool-for-remotely-deleting.html?m=1

JonMon for Windows Internals Monitoring https://github.com/jsecurity101/JonMon

Multiple Command and Control (C2) Frameworks During Red Team Engagements https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/multiple-command-and-control-c2-frameworks-during-red-team-engagements/

Attacking an EDR - Part 1 - For some fun and a fair bit of profit https://riccardoancarani.github.io/2023-08-03-attacking-an-edr-part-1/

StripedFly: Perennially flying under the radar https://securelist.com/stripedfly-perennially-flying-under-the-radar/110903/?utm_source=twitter&utm_medium=social&utm_campaign=gl_SAS-JE_je0066&utm_content=link&utm_term=gl_twitter_organic_izosxwds3vx

Reptar: an Intel Ice Lake CPU vulnerability, by Tavis Ormandy https://lock.cmpxchg8b.com/reptar.html