New Mockingjay process injection technique evades EDR detection
New Mockingjay process injection technique evades EDR detection
27 June 2023
Researchers at cybersecurity firm Security Joes discovered the method, which utilizes legitimate DLLs with RWX (read, write, execute) sections for evading EDR hooks and injecting code into remote processes.