TLS directory injection is a technique often used by malware that adds new entries to the Thread Local Storage directory of a PE file, specifying a function to run when the program starts.
TLS directory injection
0001-01-01
Recent Posts
Linux Persistence: Startup Scripts
2024-11-10 DFIR CTF linux persistence systemd SysV init startup script
Linux Persistence: Cron
2024-11-10 DFIR CTF linux persistence cron
Linux Persistence: User Accounts
2021-06-27 DFIR linux persistence