Defense Evasion: Exploiting Windows Service Failure Recovery

The post discusses exploiting the Windows Service Failure Recovery feature to execute a payload without modifying the ImagePath. The main challenge in exploiting this feature is triggering a "crash".