Awesome blog by one of my team members! Really neat tradecraft involving AV evasion with malicious macro docs. Lots of neat in memory workings ๐Ÿ˜Ž
depthsecurity.com/blog/obfusโ€ฆ Hey everyone I created a new blog post about obfuscating macro enabled word docs to bypass common EDRs. Let me know what you think!

8:20 PM ยท Sep 16, 2021

1
1
0
2
Replying to @3ndG4me_
Thanks Casey!
0
0
0
1