RealBlindingEDR Tool That Permanently Turns Off AV/EDR Using Kernel Callbacks
Submitted 3 weeks ago by cm0002@lemmy.zip to cybersecurity@infosec.pub
https://cybersecuritynews.com/realblindingedr-tool/
Submitted 3 weeks ago by cm0002@lemmy.zip to cybersecurity@infosec.pub
https://cybersecuritynews.com/realblindingedr-tool/
adespoton@lemmy.ca 3 weeks ago
That’s why any EDR worth its salt has detected both this and the attempted abuse of the signed drivers it uses since early 2024. Many will also block it from running.