# TTPs

- [TTPs: Embedding Payloads with MSFVenom (x86)](/0xtriboulet/archive/notice/ttps/ttps-embedding-payloads-with-msfvenom-x86.md): A indepth analysis of the mechanics behind embedded payloads using MSFVenom
- [TTPs: Embedding Payloads with MSFVenom (x64)](/0xtriboulet/archive/notice/ttps/ttps-embedding-payloads-with-msfvenom-x64.md): Demonstrating a workflow to achieve embeded payloads on x64 executables using MSFVenom, BinaryNinja, and x64Dbg
- [TTPs: Rust vs C++](/0xtriboulet/archive/notice/ttps/ttps-rust-vs-c++.md): A comparative analysis of C++ and Rust implant binaries
- [TTPs: JmpNoCall](/0xtriboulet/archive/notice/ttps/ttps-jmpnocall.md): A proof of concept demonstration of custom payload and implant implementations that results in clean call stack execution of malicious code
- [TTPs: BadAsm](/0xtriboulet/archive/notice/ttps/ttps-badasm.md): In this writeup we use the capabilities of inline assembly to overwrite part of our program's .text section and achieve non-standard payload self-injection and execution
- [TTPs: BadStrings](/0xtriboulet/archive/notice/ttps/ttps-badstrings.md): In this writeup we discuss a mutli-step methodology for beating string detection by Mandiant's FLOSS string deobfuscator