Update README.md

2025-04-05 21:55:14 +02:00 · 2025-04-05 21:55:14 +02:00 · 027ba24d4b
commit 027ba24d4b
parent 7dc1907a6d
1 changed files with 9 additions and 7 deletions
--- a/README.md
+++ b/README.md
@ -2,13 +2,15 @@
 ## Table of Contents
- [Introduction](#introduction)
+- [Introduction](##introduction)
- [Theoretical Foundations](#theoretical-foundations)
+- [Theoretical Foundations](##theoretical-foundations)
-  - [Windows Job Objects](#windows-job-objects)
+  - [Windows Job Objects](###windows-job-objects)
-  - [Asynchronous Procedure Calls (APC)](#asynchronous-procedure-calls-apc)
+  - [Asynchronous Procedure Calls (APC)](###asynchronous-procedure-calls-apc)
- [Early Cryo Bird Injection](#early-cryo-bird-injection)
+  - [QueueUserAPC](###QueueUserAPC)
-  - [DLL Injection](#early-cryo-bird-dll-injection)
+  - [Early Bird Injection](###EarlyBirdInjection)
-  - [Shellcode Injection](#early-cryo-bird-shellcode-injection)
+- [Early Cryo Bird Injection via Pre-Frozen Process in a Job Object](#EarlyCryoBirdInjectionviaPre-FrozenProcessinaJobObject)
  - [DLL Injection](##early-cryo-bird-dll-injection)
  - [Shellcode Injection](##early-cryo-bird-shellcode-injection)
 - [Detection & EDR Evaluation](#early-bird-cryo-injections-versus-edrs)
 - [Conclusion](#conclusion)
 - [References](#references)