The Red Team Vade Mecum
Search…
The Red Team Vade Mecum
The Red Team Vade Mecum
Techniques
Defense Evasion
Binary Properties and Code Signing
ATA/ATP
Tips and Tricks
Basics
Disabling/Patching Telemetry
Minimization
Misdirection
Command Line Argument Spoofing
PPID Spoofing via CreateProcess
Switching Parents
Dechaining via WMI
Hiding our Payloads
IPC For Evasion and Control
Privilege Escalation
Enumeration
Execution
Initial Access
Lateral Movement
Code Injection
Persistence
Infrastructure
SQL
Other
Windows Internals
Powered By
GitBook
Switching Parents
Here are the articles in this section:
Dechaining via WMI
Previous
PPID Spoofing via CreateProcess
Next
Dechaining via WMI
Last modified
1yr ago
Copy link