LABS
Home
Posts
Velociraptor
Advisories
Archive
InfoGuard
Light
Dark
System
Home
Posts
Velociraptor
Advisories
Archive
InfoGuard
About
Insights from the frontlines of offensive security and incident response
Categories
Incident Response
5
Pentest
1
Red Teaming
2
Threat Hunting
1
Vulnerability Research
6
Tags
ALPC
BravoX
captcha
DFIR
EDR
Forensics
Fuzzing
pingcastle
Ransomware
RedTeaming
ShadowCoil
Threat Hunting
Threat Intelligence
Velociraptor
VIPERTUNNEL
VulnResearch
Velociraptor
Posts
2025
2 Posts
12-01
CLRaptor: Hunting reflected assemblies with Velociraptor
Threat Hunting
09-19
Automation of VHDX Investigations
Incident Response
Artifacts
2026
9 Artifacts
05-28
Windows.Memory.DotnetDumper
#DotNet #Memory #DFIR
05-21
Update Windows.Registry.AppCompatCache
#AppCompatCache #ShimCache
05-21
Update Windows.Registry.UserAssist
#UserAssist #Registry Hunter
05-04
Update Windows.Registry.Hunter AppCompatCache
#Registry Hunter #AppCompatCache
04-29
Update Windows.Timeline.Prefetch
#Prefetch #Timeline
04-22
Update Generic.Utils.DeadDiskRemapping
#DeadDisk #Registry Hunter
02-20
Update Windows.ETW.KernelNetwork
#ETW #KernelNetwork
02-05
Windows.Forensics.Amcache
02-04
Windows.Detection.LotusBlossom.Chrysalis
2025
5 Artifacts
12-12
Windows.System.AutoLoggerDiagtrackListener
12-02
Windows.System.IsClrProcess
12-02
Windows.Detection.ReflectedAssemblies
11-07
Windows.Detection.HyperV
11-03
VHDX remapping artifacts