Jonathan JohnsonWhat the Fork: Exploring Telemetry Gaps in Microsoft’s 4688 EventOriginally posted: What the Fork: Exploring Telemetry Gaps in Microsoft’s 4688 Event | Prelude (preludesecurity.com) but authored by me.4 min read·Apr 4, 2024----
Jonathan JohnsonEvent Tracing for Windows (ETW): Your Friendly Neighborhood IPC MechanismOriginally posted: Event Tracing for Windows (ETW): Your Friendly Neighborhood IPC Mechanism | Prelude (preludesecurity.com) but authored…5 min read·Apr 4, 2024----
Jonathan JohnsonUncovering Adversarial LDAP TradecraftA Write-Up by TrustedSec’s Research Lead Carlos Perez and Binary Defense’s Research Lead Jonathan Johnson. Originally posted on the Binary…9 min read·Dec 18, 2023----
Jonathan JohnsonMastering Windows Access Control: Understanding SeDebugPrivilegeOriginally posted on the Binary Defense page, but was authored by me.11 min read·Dec 18, 2023----
Jonathan JohnsonThe Client/Server Relationship — A Match Made In HeavenThis blog is written by Jonny Johnson, Senior Researcher of Adversarial Techniques and Capabilities at Binary Defense, and co-authored…8 min read·Oct 11, 2023----
Jonathan JohnsonDemystifying DLL Hijacking Understanding the Intricate World of Dynamic Link Library AttacksThis blog was originally written by me and posted by BinaryDefense.10 min read·Oct 11, 2023----
Jonathan JohnsonThreadSleeper: Suspending Threads via GMER64 DriverOriginally posted: https://www.binarydefense.com/resources/blog/threadsleeper-suspending-threads-via-gmer64-driver/8 min read·Jul 21, 2023----