Channel: 黑客早知道
1.Scarecrow - EDR Bypass POC
2.[Dinjector] (https://github.com/snovvcrash/DInjector…)
3. [Syscalls with D/Invoke](https://offensivedefence.co.uk/posts/dinvoke-syscalls/…)
4. [Playing With An EDR: Cylance](https://roberreigada.github.io/posts/playing_with_an_edr/…)
5. [Full DLL Unhooking With C++](https://ired.team/offensive-security/defense-evasion/how-to-unhook-a-dll-using-c++…)
2.[Dinjector] (https://github.com/snovvcrash/DInjector…)
3. [Syscalls with D/Invoke](https://offensivedefence.co.uk/posts/dinvoke-syscalls/…)
4. [Playing With An EDR: Cylance](https://roberreigada.github.io/posts/playing_with_an_edr/…)
5. [Full DLL Unhooking With C++](https://ired.team/offensive-security/defense-evasion/how-to-unhook-a-dll-using-c++…)
GitHub
GitHub - optiv/ScareCrow: ScareCrow - Payload creation framework designed around EDR bypass.
ScareCrow - Payload creation framework designed around EDR bypass. - optiv/ScareCrow
HTML Embed Code: