YAGIT(Yet Another Get Injected Thread) ….
This post looks into the process of trying to ascertain if a process has a thread injected into it. I know the method and the way to discover if a thread has been injected, this is just me reminiscing these, as notes.
A long time ago I read this post by Jared Atkinson — https://gist.github.com/jaredcatkinson, the explanation is neat and the code is beautiful. I would encourage people to look into his blogs for really good research on threat hunting. The guy is a legend.
Coming back to my experiments, I wanted to recreate the same program but in C++ since I had…