Living off the land (LOLBAS/LOLBins) TL;DR: Signed Microsoft binaries that do useful things for you — bookmark LOLBAS, not your own tooling. Stub — to be filled in. What it is TODO Preconditions / where it applies TODO Technique TODO Detection and defence TODO References https://lolbas-project.github.io/