Search cyberveille.decio.ch

Found 4 bookmarks

Custom sorting

New macOS vulnerability, Migraine, could bypass System Integrity Protection | Microsoft Security Blog

A new vulnerability, which we refer to as “Migraine” for its involvement with macOS migration, could allow an attacker with root access to automatically bypass System Integrity Protection (SIP) in macOS and perform arbitrary operations on a device

#Microsoft #en #2023 #research #vulnerability #macOS #Migraine #bypass #SIP

·microsoft.com·Jun 4, 2023

New macOS vulnerability, Migraine, could bypass System Integrity Protection | Microsoft Security Blog

EDR bypassing via memory manipulation techniques | WithSecure™ Labs

Endpoint Detection & Response systems (EDR), delivered by in-house teams or as part of a managed service, are a feature of modern intrusion detection and remediation operations. This success is a problem for attackers, and malicious actors have worked to find new ways to evade EDR detection capabilities. PDF Document

#withsecure #EN #2023 #Research #Connor-Morley #EDR #bypass #manipulation #techniques

·labs.withsecure.com·May 31, 2023

EDR bypassing via memory manipulation techniques | WithSecure™ Labs

On Bypassing eBPF Security Monitoring

There are many security solutions available today that rely on the Extended Berkeley Packet Filter (eBPF) features of the Linux kernel to monitor kernel functions. Such a paradigm shift in the latest monitoring technologies is being driven by a variety of reasons

#doyensec #doyensecurity #EN #2022 #vulnerability #exploit #eBPF #bypass #research

·blog.doyensec.com·Oct 13, 2022

On Bypassing eBPF Security Monitoring

#doyensec #doyensecurity #EN #2022 #vulnerability #exploit #eBPF #bypass #research

·blog.doyensec.com·Oct 13, 2022

On Bypassing eBPF Security Monitoring