security-tools/atomic-red-team
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
a739d22d101485bbcc08872aea4b8a6eebf6fc7d
atomic-red-team/Windows/Credential_Access/Hooking.md
T
Michael Haag 7ef84e4815 Credential_Access/Hooking
2018-04-24 10:17:42 -04:00

13 lines
352 B
Markdown
Executable File
Raw Blame History

## Hooking
MITRE ATT&CK Technique: [T1179](https://attack.mitre.org/wiki/Technique/T1179)
### Sample Windows DLL Injection into PowerShell
mavinject $pid /INJECTRUNNING C:\Atomic\AtomicSSLHook.dll
## Test Script
[AtomicSSLHook.dll](https://github.com/redcanaryco/atomic-red-team/blob/master/Windows/Payloads/AtomicSSLHook.dll)
Reference in New Issue View Git Blame Copy Permalink