From 64b946222d9897935c3a8f8201be3c6ed47d2c80 Mon Sep 17 00:00:00 2001 From: mether049 Date: Sun, 3 May 2020 22:35:16 +0900 Subject: [PATCH] Update malware-tech_ref_and_memo.md --- malware-tech_ref_and_memo.md | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/malware-tech_ref_and_memo.md b/malware-tech_ref_and_memo.md index 7fda733..c8cba47 100644 --- a/malware-tech_ref_and_memo.md +++ b/malware-tech_ref_and_memo.md @@ -498,7 +498,10 @@ vssadmin Delete Shadows /All /Quiet - [17JAN2017 - Abusing native Windows functions for shellcode execution](http://ropgadget.com/posts/abusing_win_functions.html) - [Evasive VBA — Advanced Maldoc Techniques](https://medium.com/walmartlabs/evasive-vba-advanced-maldoc-techniques-1365e9373f80) - +# Malicious JScript +### Formjacking +- ref: + - [Anatomy of Formjacking Attacks](https://unit42.paloaltonetworks.com/anatomy-of-formjacking-attacks/) # Shell Backdoor - Web Shell等 - 様々なShell Backdoor(PHP/ASP)