 |
Post AxGd8QaE7tY2yGwIlc by [email protected] |
 |
More posts by [email protected] |
|
Post #AxE62BT7iv1bYM70YS by [email protected] |
|
0 likes, 3 repeats |
|
|
|
You really should read this article on how criminal groups routinely bypass EDR… |
|
|
|
Post #AxE62Rb9koxPZtzeIS by [email protected] |
|
0 likes, 1 repeats |
|
|
|
I get a lot of confused and angry teams when I inject EDR disablement into IR t… |
|
|
|
Post #AxE6sNqkw4hf0k3Zey by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@hacks4pancakes yes!!!! |
|
|
|
Post #AxE7h71TG4yhaiG2Uq by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@hacks4pancakes Even worse: Sometimes it's easier to weaponize the EDR inst… |
|
|
|
Post #AxE82bh0QJeYnFw1AG by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@hacks4pancakes "So ... about that defense in depth, huh?" 😑 |
|
|
|
Post #AxECMnsHF0jgBP5oHI by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@hacks4pancakes anyone who believes that "we have EDR so nothing can get b… |
|
|
|
Post #AxEMh9YVL99Yl7BcTg by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@hacks4pancakes yay, another reason to hate EDR products |
|
|
|
Post #AxENFgEKMa9rwXDEm0 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@hacks4pancakes Wondering if these techniques are used to disable/bypass kernel… |
|
|
|
Post #AxEP5C7FfiM3Yg1xrc by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@ljrk @hacks4pancakes This person EDRs! |
|
|
|
Post #AxEQe8V9CcVQRBQuVU by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@malwareminigun @hacks4pancakes Ah, requires local admin. I've definitely h… |
|
|
|
Post #AxERrT5S4qNW08KqS8 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@hacks4pancakes I’ve been told off for doing this kind of thing before 😂�… |
|
|
|
Post #AxETjRkrLVflSf0RDU by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@malwareminigun @hacks4pancakes now.. were that a developer running administrat… |
|
|
|
Post #AxEUsNVKcOSyq5Z8bo by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@risottobias @hacks4pancakes that these kinds of products absolutely crater bui… |
|
|
|
Post #AxEYIoFS6ik5AwQvx2 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@hacks4pancakes I don't see it getting harder either with MS kicking them o… |
|
|
|
Post #AxFXEbu49rRAvxp93g by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@[email protected] Aside from monitoring for these, are there any… |
|
|
|
Post #AxGd8QaE7tY2yGwIlc by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@hacks4pancakes looks like there are some similarities in high level concepts w… |
|
|
|
Post #AxHrMu4asEfn0Dtqt6 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@hacks4pancakes continuous healthchecks are a must |
|
|
|
Post #AxHrN18kbB9ov8tlq4 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@malwareminigun @hacks4pancakes my IT team recovered our servers within 2 hours… |
|
|
|
Post #AxJljdorGCJPqNv0TI by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@hacks4pancakes This is something I say weekly also! To convince, I had to coll… |
