TLS directory injection is a technique often used by malware that adds new entries to the Thread Local Storage directory of a PE file, specifying a function to run when the program starts.
TLS directory injection
0001-01-01
Recent Posts
Linux Persistence: atd
2025-04-01 DFIR CTF linux persistence at atd
Linux Persistence: SSH
2025-03-29 DFIR CTF SSH hardening hunting persistence linux persistence hunting hardening SSH PAM