Bypassing Major EDRs Using Pool Party Process Injection Techniques
Bypassing Major EDRs Using Pool Party Process Injection Techniques
09 December 2023
The technique utilizes Windows thread pools and includes a chain of three primitives for memory allocation, writing malicious code, and executing it, making it more flexible than existing process injection techniques.