BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook - RedPacket Security
Tags
attack-pattern: Powershell - T1059.001 Powershell - T1086 Scripting - T1064 Scripting
Show in Graph
Common Information
Type Value
UUID 0755eeb9-956d-4460-80fc-cd73205cd9fc
Fingerprint b1cf0c2ebb3f07c8
Analysis status DONE
Considered CTI value 0
Text language
Published Sept. 19, 2024, 12:26 p.m.
Added to db Sept. 19, 2024, 2:13 p.m.
Last updated Sept. 25, 2024, 3:46 p.m.
Headline BYOSI – Evade EDR’s The Simple Way, By Not Touching Any Of The API’s They Hook
Title BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook - RedPacket Security
Detected Hints/Tags/Attributes 22/1/1
Source URLs
Redirection Url
Details Source https://www.redpacketsecurity.com/byosi-evade-edr-s-the-simple-way-by-not-touching-any-of-the-api-s-they-hook/
Details Source https://www.redpacketsecurity.com/byosi-evade-edr-s-the-simple-way-by-not-touching-any-of-the-api-s-they-hook-2/
URL Provider
Details Provider Source level domain
Details redpacketsecurity.com www.redpacketsecurity.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 361 RedPacket Security https://www.redpacketsecurity.com/feed/ 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 7 
kitploit.com