#windowsinternals search results
🧠 Core Windows Architecture Understanding Windows Internals isn’t optional — it’s survival. 🔹 Kernel & User Mode 🔹 Processes & Threads 🔹 System Calls & Handles If you don’t know how Windows runs, you’ll never know how it breaks. #CyberSecurity #WindowsInternals
Windows Internals article sh3ll.cloud/xf2/threads/43… #windowsdevelopment #windows #windowsinternals
Red vs Blue never stops evolving! 🎯 #CyberSecurity #TryHackMe #WindowsInternals #RedTeam #EDR #ProcessInjection Check out the room: lnkd.in/gMyRkfVb
Want to understand how Windows handles authentication and access tokens? Security analyst @emanuelduss explains how they’re created, used, and abused - with live demos. 🎥Presentation: youtu.be/_ODdwpxXRR4?si… #Security #Pentest #WindowsInternals
👀 Think AMSI bypass was wild? Wait until you see what’s in Part 2 🧠 Learn how to defeat: ✅ PowerShell Logging ✅ ETW ✅ SmartScreen ✅ MoTW ✅ C# Reflection ✅ More stealth tricks verylazytech.com/windows/antivi… #AVBypass #RedTeam #WindowsInternals #EDREvasion #OffSec #CyberSecurity
Unlock forbidden Windows knowledge! 🤫💻 Find the PEB through truly undetected means and pop calculator 💥 The non-golf form will be available below 👇 #redteamtips #windowsinternals #rust
Just published a article on my blog - Malware Development: 🧠 Process Injection - DLL, Shellcode 🔗 Read here: debug-diary.vercel.app/post/Process_I… Also added hand drawn images for better understanding #MalwareDevelopment #WindowsInternals #Cybersecurity
New video: Inside Windows Sessions with @zodiacon. Learn how Windows manages processes, desktops & security inside sessions. trainsec.net/library/window… #WindowsInternals #CyberSecurity #TrainSec
I added the category Windows Programming: github.com/pmatula/Window… #windowsinternals
github.com
GitHub - patrickmatula/Windows-Internals-Learning-Resources
Contribute to patrickmatula/Windows-Internals-Learning-Resources development by creating an account on GitHub.
Excited to share that I’ve completed the Windows Internals training! A big thank to @TrainSec @zodiacon and everyone who contributed to this training. Looking forward to applying these insights in real-world scenarios! #WindowsInternals #CyberSecurity #Learning #WinDbg #Malware
NTFS Alternate Data Streams (ADS) are a lesser-known feature that let you hide data inside files. Used for stealthy persistence, evasion, or covert storage (for example, to store payloads). Most tools — and users — completely overlook them. #CyberSecurity #DFIR #WindowsInternals
¡No parpadees si no te lo quieres perder! Kurosh Dabbagh nos habla de "Call Stack Spoofing para ocultar la ejecución de implantes desde memoria" #WindowsInternals #Malware #EDR @_Kudaes_
🧪 New technique: DreamWalkers A reflective shellcode loader that crafts a synthetic, clean call stack. Achieving stealthy execution from memory-mapped modules. 🔗 maxdcb.github.io/DreamWalkers/ #MalwareResearch #RedTeam #WindowsInternals #OffSec
Sharing is caring 🫶 Excellent write-up on MSRPC #exploitdevelopment. Clear breakdowns and great insights for anyone working in #WindowsInternals or offensive engineering. incendium.rocks/posts/Exploit-… From the #Hackcraft #RedTeaming team with love! #CyberSecurity #InfoSec #RedTeam
Windows memory management is one of the most critical areas of #WindowsInternals!❌ Watch @samilaiho bust some myths around it in this demo from our previous Advanced Windows Security Course 👉 youtube.com/watch?v=CBHYp3… #WindowsSecurity
Check it out and level up your skills: blog.dv08.in/blog/windows-p… one Windows process hack you've used? Drop it in the replies! #WindowsInternals #CyberSecurity #Programming #TechTips (Pro tip: Follow for more deep dives into AI, blockchain, and coding!)
Sometimes I crave learning on my own accord! Do you think that its going to be wasted effort? #WindowsInternals #WindowsAPI #Learning
Enroll now for our 40-hour live workshop “EDR Internals: R&D,” co-taught with @MalFuzzer. Starts 23 Oct 2025. Dissect & build EDR drivers, master evasion techniques. Early-bird $1,450 ends 30 Sep. Details: trainsec.net/courses/edr-in… #EDR #WindowsInternals
Windows Internals article sh3ll.cloud/xf2/threads/43… #windowsdevelopment #windows #windowsinternals
Sharing is caring 🫶 Excellent write-up on MSRPC #exploitdevelopment. Clear breakdowns and great insights for anyone working in #WindowsInternals or offensive engineering. incendium.rocks/posts/Exploit-… From the #Hackcraft #RedTeaming team with love! #CyberSecurity #InfoSec #RedTeam
Red vs Blue never stops evolving! 🎯 #CyberSecurity #TryHackMe #WindowsInternals #RedTeam #EDR #ProcessInjection Check out the room: lnkd.in/gMyRkfVb
Want to understand how Windows handles authentication and access tokens? Security analyst @emanuelduss explains how they’re created, used, and abused - with live demos. 🎥Presentation: youtu.be/_ODdwpxXRR4?si… #Security #Pentest #WindowsInternals
So next time your debugger mentions “relocation table” or “base address,” just picture Windows moving books around on a crowded desk and rewriting their tables of contents so no chapters get lost. 🧠💻 #WindowsInternals #PE #ReverseEngineering #SystemsProgramming
🧠 Core Windows Architecture Understanding Windows Internals isn’t optional — it’s survival. 🔹 Kernel & User Mode 🔹 Processes & Threads 🔹 System Calls & Handles If you don’t know how Windows runs, you’ll never know how it breaks. #CyberSecurity #WindowsInternals
New video: Inside Windows Sessions with @zodiacon. Learn how Windows manages processes, desktops & security inside sessions. trainsec.net/library/window… #WindowsInternals #CyberSecurity #TrainSec
6️⃣ Commit ≠ Working Set. Commit = memory apps asked for. Working Set = what’s in RAM now. High commit doesn’t mean “out of memory.” Check with RamMap. 📊 #WindowsInternals #Memory
3️⃣ 100% CPU but no clear culprit? 🔥 Run !runaway in WinDbg. 👉 Often it’s 1 runaway thread hogging cycles, not “the system.” #Debugging #WindowsInternals
1️⃣ Memory leaks ≠ high RAM usage. Windows caches memory aggressively. 🚀 👉 The real issue is Private Bytes climbing without release. Use PoolMon or WinDbg !vm. #WindowsInternals #Debugging
Just finished a new whitepaper: COMouflage – COM-based DLL Surrogate Injection I tested the technique against three major EDRs: - Microsoft Defender – bypassed - Palo Alto Cortex XDR – bypassed - SentinelOne – bypassed github.com/zero2504/COMou… #malware #COM #windowsinternals
Custom Windows shellcode leverages PEB and TEB structures for stealthy API resolution, dynamic payload control, and detection evasion. Encoding strings as hex keeps payloads self-contained and covert. #WindowsInternals #ShellcodeCraft #USA ift.tt/RukcYeH
و با نوشتن رول در #سوریکاتا، به شناسایی Signature در ترافیک دانلودی پرداختیم. در نهایت این بخش رو به PE Parser اضافه کردیم. مشاهده در یوتیوب: youtu.be/hr0WQaeNJdU?si… اسلاید و کدها: github.com/onhexgroup/Tut… #ویندوز_اینترنالز #WindowsInternals #redteam #Blueteam #PEParser #Lief
youtube.com
YouTube
قسمت چهارم: NT Headers بخش Signature
ashishranax.com/posts/Threads,… Understanding Threads, TEB, PEB, TLS, and SEH in Windows - and how they connect with each other. #x86 #ReverseEngineering #WindowsInternals
"Contribute to Open Source Software with Me" Bblwrp — pronounced bubble wrap, as in “bubble wrap” or “insulate” your software. Join the fun: github.com/DesignsbyBlanc… #WindowsInternals #IT #Microsoft #opensourcesoftware #softwaredevelopement #programming #cplusplus
Windows memory management is one of the most critical areas of #WindowsInternals!❌ Watch @samilaiho bust some myths around it in this demo from our previous Advanced Windows Security Course 👉 youtube.com/watch?v=CBHYp3… #WindowsSecurity
Just published a article on my blog - Malware Development: 🧠 Process Injection - DLL, Shellcode 🔗 Read here: debug-diary.vercel.app/post/Process_I… Also added hand drawn images for better understanding #MalwareDevelopment #WindowsInternals #Cybersecurity
🛠️ TokenUniverse tool showcase: Admin to TrustedInstaller without spawning the service. #WindowsInternals #TokenUniverse github.com/diversenok/Tok…
🧠 Core Windows Architecture Understanding Windows Internals isn’t optional — it’s survival. 🔹 Kernel & User Mode 🔹 Processes & Threads 🔹 System Calls & Handles If you don’t know how Windows runs, you’ll never know how it breaks. #CyberSecurity #WindowsInternals
Yet another way of starting the WER Service: use undocumented NtUpdateWnfStateData() with 0x41940b3aa3bc0875 as a parameter. Allowed for anyone. Windows Notification Facility FTW! #wnf #WindowsInternals
New video #WindowsInternals series: "Tracing C function fopen [Part2] - Windbg Kernel Debugging - Walk-Through User-Mode to Kernel Executive Subsytem" and much more... Video: youtu.be/8oaEAPC84gc Walk-Through: git.io/JseF3
![vinopaljiri's tweet image. New video #WindowsInternals series:
"Tracing C function fopen [Part2] - Windbg Kernel Debugging - Walk-Through User-Mode to Kernel Executive Subsytem" and much more...
Video: youtu.be/8oaEAPC84gc
Walk-Through: git.io/JseF3](https://pbs.twimg.com/media/E1GEWb-WYAA79Vy.png)
![vinopaljiri's tweet image. New video #WindowsInternals series:
"Tracing C function fopen [Part2] - Windbg Kernel Debugging - Walk-Through User-Mode to Kernel Executive Subsytem" and much more...
Video: youtu.be/8oaEAPC84gc
Walk-Through: git.io/JseF3](https://pbs.twimg.com/media/E1GEc0dWYAEQFNH.jpg)
![vinopaljiri's tweet image. New video #WindowsInternals series:
"Tracing C function fopen [Part2] - Windbg Kernel Debugging - Walk-Through User-Mode to Kernel Executive Subsytem" and much more...
Video: youtu.be/8oaEAPC84gc
Walk-Through: git.io/JseF3](https://pbs.twimg.com/media/E1GEeNUWUAAxEV2.jpg)
![vinopaljiri's tweet image. New video #WindowsInternals series:
"Tracing C function fopen [Part2] - Windbg Kernel Debugging - Walk-Through User-Mode to Kernel Executive Subsytem" and much more...
Video: youtu.be/8oaEAPC84gc
Walk-Through: git.io/JseF3](https://pbs.twimg.com/media/E1GEfVUWQAA66fy.jpg)
Be a regular user, face "Access Denied" when starting a system service, inject false ETW trigger to make it starting anyway. Fully working PoC for wersvc: github.com/gtworek/PSBits… #WindowsInternals #security
Red vs Blue never stops evolving! 🎯 #CyberSecurity #TryHackMe #WindowsInternals #RedTeam #EDR #ProcessInjection Check out the room: lnkd.in/gMyRkfVb
Reverse Engineering Malware, Part 4: Windows Internals #windowsinternals #reversing #dfir #malware #infosec #cyberwarrior bit.ly/3rXXYD3
👀 Think AMSI bypass was wild? Wait until you see what’s in Part 2 🧠 Learn how to defeat: ✅ PowerShell Logging ✅ ETW ✅ SmartScreen ✅ MoTW ✅ C# Reflection ✅ More stealth tricks verylazytech.com/windows/antivi… #AVBypass #RedTeam #WindowsInternals #EDREvasion #OffSec #CyberSecurity
Tracing iSCSI on Windows Server 2016/2019 through "Event Trace Sessions" #WindowsInternals #Performance
Something went wrong.
Something went wrong.
United States Trends
- 1. Cyber Monday 43.3K posts
- 2. #IDontWantToOverreactBUT 1,297 posts
- 3. #Fivepillarstoken 1,585 posts
- 4. Adam Thielen 1,315 posts
- 5. Alina Habba 23.9K posts
- 6. Shopify 4,538 posts
- 7. TOP CALL 11.4K posts
- 8. Shakur 4,581 posts
- 9. #GivingTuesday 2,522 posts
- 10. $MSTR 15.3K posts
- 11. #MondayMotivation 9,642 posts
- 12. #Rashmer 18.2K posts
- 13. Check Analyze N/A
- 14. Token Signal 3,338 posts
- 15. GreetEat Corp. N/A
- 16. Market Focus 2,811 posts
- 17. Mainz Biomed N/A
- 18. Melania Trump 33.2K posts
- 19. Luigi Mangione 4,335 posts
- 20. JUST ANNOUNCED 19.3K posts