bilal al-qurnehBypassing EDR NTDS.dit protection using BlueTeam tools.During an internal penetration test, Cortex EDR was installed in the domain controller. After obtaining Domain Admin privileges on the…Jun 93Jun 93
bilal al-qurnehBypassing Bitdefender antivirus using API unhookingThis article is a walkthrough on topic that i was researching about which is API unhooking, so for me to better understand it, I did this…Sep 30, 2023Sep 30, 2023
bilal al-qurnehBypass CrowdStrike Falcon EDR protection against process dump like lsass.exeOne of the main thing you do as a penetration tester when you compromise a windows machine on the network and you want to expand to other…Sep 13, 20222Sep 13, 20222