EDRSilencer: The Red Team Tool Turned Cybercriminal Weapon
(securityonline.info)
from kid@sh.itjust.works to cybersecurity@sh.itjust.works on 15 Oct 2024 12:15
https://sh.itjust.works/post/26653536
from kid@sh.itjust.works to cybersecurity@sh.itjust.works on 15 Oct 2024 12:15
https://sh.itjust.works/post/26653536
EDRSilencer “disrupts the transmission of telemetry or alerts to EDR management consoles,” rendering these security tools ineffective at identifying and removing malware. By leveraging the Windows Filtering Platform (WFP), EDRSilencer blocks network communication from processes associated with various EDR products, creating a blind spot in an organization’s security defenses.
threaded - newest