Hack-cessibility: When DLL Hijacks Meet Windows Helpers
https://trustedsec.com/blog/hack-cessibility-when-dll-hijacks-meet-windows-helpers
@reverseengine
https://trustedsec.com/blog/hack-cessibility-when-dll-hijacks-meet-windows-helpers
@reverseengine
TrustedSec
Hack-cessibility: When DLL Hijacks Meet Windows Helpers
❤2
The art of Breaking Through
https://0xdbgman.github.io/posts/sec-controls-the-art-of-breaking-through
@reverseengine
https://0xdbgman.github.io/posts/sec-controls-the-art-of-breaking-through
@reverseengine
DbgMan
Sec Controls: The Art of Breaking Through
The definitive red team guide to understanding and bypassing Windows security controls: Windows Defender (static + AMSI + behavioral), AppLocker, WDAC, SmartScreen, ASR Rules, Credential Guard (VBS/LSAIso), Sysmon, PPL, and a comprehensive EDR deep-dive covering…
❤2
EDR Killer
Exploits a vulnerability in the wsftprm.sys driver to disable antivirus and EDR
https://github.com/ThanniKudam/TopazTerminator
@reverseengine
Exploits a vulnerability in the wsftprm.sys driver to disable antivirus and EDR
https://github.com/ThanniKudam/TopazTerminator
@reverseengine
GitHub
GitHub - ThanniKudam/TopazTerminator: Just another EDR killer
Just another EDR killer. Contribute to ThanniKudam/TopazTerminator development by creating an account on GitHub.
❤3