Blog

Writeups, walkthroughs, and field notes from authorized engagements, CTF challenges, and security research.

Browse by Topic

T·001 EDR Evasion Unhooking, syscalls, loader development 1 post T·002 C2 & Tradecraft Sliver, Havoc, OPSEC, TTPs 1 post

T·003 Active Directory Kerberoasting, lateral movement, domain compromise coming soon

T·004 Exploit Dev Stack BOF, ROP chains, shellcode from scratch coming soon

T·005 Reverse Engineering Ghidra, x64dbg, crackme writeups coming soon

Posts × clear

2025-05-17 edr-evasion c2-tradecraft windows persistence

Invisible Registry Keys, but Sort of

Creating null-byte prefixed registry keys for persistence — keys that appear invisible to native Windows tools like regedit and reg.exe.

// no posts in this category yet