├── Finding Detection and Forensic Goodness In ETW Providers
    └── Finding Detection and Forensic Goodness In ETW Providers.xmind
├── README.md
├── Understanding & Detecting C2 Frameworks
    ├── HARS - HTTPS Asynchronous Reverse Shell
    │   └── HARS - HTTPS Asynchronous Reverse Shell (Server Handler).xmind
    └── TrevorC2
    │   └── TrevorC2 (Main Callback Flow).xmind
└── Windows System Processes
    ├── Services
        └── Windows Services (Creation).xmind
    ├── Svchost
        └── Svchost.xmind
    └── Windows System Processes.xmind


/Finding Detection and Forensic Goodness In ETW Providers/Finding Detection and Forensic Goodness In ETW Providers.xmind:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/nasbench/MindMaps/HEAD/Finding Detection and Forensic Goodness In ETW Providers/Finding Detection and Forensic Goodness In ETW Providers.xmind


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/nasbench/MindMaps/HEAD/README.md


--------------------------------------------------------------------------------
/Understanding & Detecting C2 Frameworks/HARS - HTTPS Asynchronous Reverse Shell/HARS - HTTPS Asynchronous Reverse Shell (Server Handler).xmind:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/nasbench/MindMaps/HEAD/Understanding & Detecting C2 Frameworks/HARS - HTTPS Asynchronous Reverse Shell/HARS - HTTPS Asynchronous Reverse Shell (Server Handler).xmind


--------------------------------------------------------------------------------
/Understanding & Detecting C2 Frameworks/TrevorC2/TrevorC2 (Main Callback Flow).xmind:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/nasbench/MindMaps/HEAD/Understanding & Detecting C2 Frameworks/TrevorC2/TrevorC2 (Main Callback Flow).xmind


--------------------------------------------------------------------------------
/Windows System Processes/Services/Windows Services (Creation).xmind:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/nasbench/MindMaps/HEAD/Windows System Processes/Services/Windows Services (Creation).xmind


--------------------------------------------------------------------------------
/Windows System Processes/Svchost/Svchost.xmind:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/nasbench/MindMaps/HEAD/Windows System Processes/Svchost/Svchost.xmind


--------------------------------------------------------------------------------
/Windows System Processes/Windows System Processes.xmind:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/nasbench/MindMaps/HEAD/Windows System Processes/Windows System Processes.xmind


--------------------------------------------------------------------------------