In this presentation, we provide the most comprehensive todate "Windows process injection" collection of techniques the first time such resource is available, that really covers all (or almost all) true injection techniques. We focus on Windows 10 x64, and on injections from running 64bit medium integrity process to another running 64bit medium integrity process, without privilege elevation.
By Itzik Kotler and Amit Klein
Full Abstract & Presentation Materials: https://www.blackhat.com/us19/briefi...