Hiding IAT entries to evade detection.
Using Nim to write some simple tools.
Writing a process injection tool using direct system calls.
Creating a ClickOnce installer for Phishing campaigns.
Process Injection using NtCreateSection and NtMapViewOfSection.
Assuming other users identities by copying access tokens.
Using fibers instead of threads to run shellcode.
Modifying the Process Environment Block for process argument spoofing.
Evading Windows Defender memory scanning.
CreateRemoteThread Process Injection in C#
Bypassing ETW userland hooks.
Bypassing AMSI when using Assembly.Load.