Daniel Roberson - TLS directory injection

Posts
About
Notes
Projects
Posts

About

Notes

Projects

TLS directory injection

0001-01-01

TLS directory injection is a technique often used by malware that adds new entries to the Thread Local Storage directory of a PE file, specifying a function to run when the program starts.

Links to this note

VXadventure-amethystbasilisk2024

Recent Posts

Linux Persistence: atd

2025-04-01 DFIR CTF linux persistence at atd

Linux Persistence: SSH

2025-03-29 DFIR CTF SSH hardening hunting persistence linux persistence hunting hardening SSH PAM

Linux Hardening: SSH

2025-03-06 DFIR SSH hardening linux hardening SSH PAM

Linux Anti-Forensics: Timestomping

2025-03-05 DFIR linux anti-forensics

Finding Bad with Linux Package Managers

2025-03-03 DFIR linux persistence