Demo service that runs in svchost.exe
-
Updated
Jan 3, 2018 - C++
#
svchost
Here are 9 public repositories matching this topic...
A collection of powerful AQL (Ariel Query Language) queries for threat hunting, incident investigation, and security monitoring in IBM QRadar.
incident-response hacking threat-hunting hunter svchost mitre-attack qradar dns-zone-transfers rdp-exploit aql-queries dnstunnel abrar abrar-hussain-khalid
-
Updated
Nov 3, 2025
Case study + repeatable checks to detect and remove miner-like malware persisting as a random u###### service in Svchost DcomLaunch, with System32 artifacts.
windows persistence incident-response forensics cybersecurity defender cyber-security malware-detection svchost malware-removal
-
Updated
Feb 9, 2026 - PowerShell
Improve this page
Add a description, image, and links to the svchost topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the svchost topic, visit your repo's landing page and select "manage topics."