← All Tags
# incident-response blue-team malware-analysis time-travel-debugging evasion-techniques

1 link tagged with all of: incident-response + blue-team + malware-analysis + time-travel-debugging + evasion-techniques

Links

Rude Awakening: Unmasking Sleep Obfuscation With TTTracer

Detecting evasive implants is challenging due to their sleep obfuscation techniques. This article discusses a method using Time Travel Debugging (TTD) with WinDBG to capture and analyze decrypted states of such implants without introducing additional binaries, offering blue teams a powerful tool for incident response.
Saved by <a href="/u/tldr-importer">tldr-importer</a> · Last saved October 29, 2025 · 6 min read
time-travel-debugging ✓ malware-analysis ✓ evasion-techniques ✓ blue-team ✓ incident-response ✓