每周蓝军技术推送（2022.3.19-3.25）

https://mp.weixin.qq.com/s/Lt15gLdE_DYR3Ng2NVrWrg

https://tttang.com/archive/1489/

https://www.tiraniddo.dev/2022/03/bypassing-uac-in-most-complex-way.html

https://pentestlab.blog/2022/03/21/unconstrained-delegation/

https://tttang.com/archive/1487/

https://twitter.com/an0n_r0/status/1506824658838040580

https://www.thehacker.recipes/ad/movement/kerberos/delegations#talk

https://windows-internals.com/an-exercise-in-dynamic-analysis/

https://www.x86matthew.com/view_post?id=notepadexec

https://www.inversecos.com/2022/03/windows-event-log-evasion-via-native.html

https://www.hackingarticles.in/parent-pid-spoofing-mitret1134/

https://github.com/lab52io/LeakedHandlesFinder

https://github.com/Puliczek/CVE-2022-0337-PoC-Google-Chrome-Microsoft-Edge-Opera

https://vul.360.net/archives/368

https://msrc-blog.microsoft.com/2022/03/22/exploring-a-new-class-of-kernel-exploit-primitive/

https://googleprojectzero.blogspot.com/2022/03/racing-against-clock-hitting-tiny.html

https://blog.ryanjarv.sh/2022/03/16/bypassing-wafs-with-alternate-domain-routing.html

https://cloudbrothers.info/en/azure-dominance-paths/

http://noahblog.360.cn/abuse-gateway-api-attack-kubernetes/

https://docs.google.com/presentation/d/1vVpNezQ1uVS3_PQ_beYH-cQR6qrvGcMP8MWV7LA-nKU/mobilepresent#slide=id.p

https://mp.weixin.qq.com/s/HlAXIaF6H3k5uFEsmpydjQ

https://mp.weixin.qq.com/s/MA78b9sv2r67t6EnPtDu6A

https://map.malfrats.industries

https://www.youtube.com/watch?v=BVBuADTsiG4&list=PLnWGkkkDVeqiTAdYxmGJnAGpjSNRSKwKm&index=4

https://http418infosec.com/offsecops-using-jenkins-for-red-team-tooling