Dirty Vanity: A New Approach to Code Injection & EDR Bypass

This talk showcases yet another new code injection technique (I know, bear with me), nicknamed Dirty Vanity. This technique challenges current injection detection and prevention means while opening a wider spectrum of attacks that challenges common concepts of EDR TTPs. This technique abuses the lesser-known forking mechanism which is built in Windows operating systems. In the talk, we will cover the forking mechanism's internals, and common means to activate it... By: Eliran Nissan Full Abstract and Presentation Materials: https://www.blackhat.com/eu-22/briefi...

DnD: Decompiling Deep Neural Network Compiled Binary
▶︎

DnD: Decompiling Deep Neural Network Compiled Binary

Hyper Focus Mode | Concentration Music Productivity | Work Focus Background | Deep Flow 2026
▶︎

Hyper Focus Mode | Concentration Music Productivity | Work Focus Background | Deep Flow 2026

Building an EDR From Scratch Part 2 - Hooking DLL (Endpoint Detection and Response)
▶︎

Building an EDR From Scratch Part 2 - Hooking DLL (Endpoint Detection and Response)

Silent Intruders: Dissecting EDR Bypass Strategies in APT Attacks - by Chao Wei-Chieh
▶︎

Silent Intruders: Dissecting EDR Bypass Strategies in APT Attacks - by Chao Wei-Chieh

DEF CON 32 - Defeating EDR Evading Malware with Memory Forensics - Case, Sellers, Richard, et al.
▶︎

DEF CON 32 - Defeating EDR Evading Malware with Memory Forensics - Case, Sellers, Richard, et al.

BlueHat IL 2026 - Maor Abutbul - Why-So-QUIC!? Racing and Fuzzing HTTP/3 WebApps using QuicDraw-UI
▶︎

BlueHat IL 2026 - Maor Abutbul - Why-So-QUIC!? Racing and Fuzzing HTTP/3 WebApps using QuicDraw-UI

You Can Run, but You Can't Hide - Finding the Footprints of Hidden Shellcode
▶︎

You Can Run, but You Can't Hide - Finding the Footprints of Hidden Shellcode

APIs for Beginners - How to use an API (Full Course / Tutorial)
▶︎

APIs for Beginners - How to use an API (Full Course / Tutorial)

ATT&CK Deep Dive: Process Injection
▶︎

ATT&CK Deep Dive: Process Injection

Tales of AV/EDR Bypass - Double Feature w/ Greg Hatcher & John Stigerwalt
▶︎

Tales of AV/EDR Bypass - Double Feature w/ Greg Hatcher & John Stigerwalt

HTTP Request Smuggling in 2020 – New Variants, New Defenses and New Challenges
▶︎

HTTP Request Smuggling in 2020 – New Variants, New Defenses and New Challenges

The World's Most Important Machine
▶︎

The World's Most Important Machine

05 - BruCON 0x10 - Bypassing firewalls with API-to-API Hacking - Johan Caluwé
▶︎

05 - BruCON 0x10 - Bypassing firewalls with API-to-API Hacking - Johan Caluwé

Don't Hang Up On AI Scammers. Do THIS Instead.
▶︎

Don't Hang Up On AI Scammers. Do THIS Instead.

Develop Your Own RAT: EDR + AV Defense by Dobin Rutishauser
▶︎

Develop Your Own RAT: EDR + AV Defense by Dobin Rutishauser

DEF CON 32 - Inside the FBI’s Secret Encrypted Phone Company ‘Anom’ - Joseph Cox
▶︎

DEF CON 32 - Inside the FBI’s Secret Encrypted Phone Company ‘Anom’ - Joseph Cox

CrikeyCon 2019 - Christopher Vella - Reversing & bypassing EDRs
▶︎

CrikeyCon 2019 - Christopher Vella - Reversing & bypassing EDRs

Shor's Algorithm for Quantum Computing - Computerphile
▶︎

Shor's Algorithm for Quantum Computing - Computerphile

#HITB2022SIN EDR Evasion Primer For Red Teamers - Jorge Gimenez & Karsten Nohl
▶︎

#HITB2022SIN EDR Evasion Primer For Red Teamers - Jorge Gimenez & Karsten Nohl

Billionaire's WARNING: I'm SELLING. The Crash Is Already Here!
▶︎

Billionaire's WARNING: I'm SELLING. The Crash Is Already Here!