.webp)
LOLSpoof is a an interactive shell program that automatically spoof the command line arguments of the spawned process. Just call your incriminate-looking command line LOLBin (e.g. powershell -w hidden -enc ZwBlAHQALQBwAHIAbwBjAGUA….) and LOLSpoof will ensure that the process creation telemetry appears legitimate and clear. Why Process command line is a very monitored telemetry, being thoroughly inspected …
Continue reading “LOLSpoof – A Clever Technique To Evade Command Line Detection And Maintain OPSEC”