Alternate Data Streams on Windows NTFS: A Red Team's Guide to Hiding and Detecting Hidden Data
This article explores how Red Team members can utilize alternate data streams on Windows NTFS to hide data, with specific examples and cautionary considerations.