Explore a Black Hat conference talk that delves into the creation of a next-generation wiper capable of running with unprivileged user permissions while possessing the ability to delete any file on a system, including those critical to Windows OS bootability. Learn about the evolution of wipers as tools for nation-state cyber warfare, their usage by various APTs, and the speaker's innovative approach to leveraging EDR vulnerabilities. Discover how this research uncovered multiple 0-day exploits in leading EDR products, potentially turning them into powerful wipers. Gain insights into the implications of these findings for cybersecurity and the importance of addressing vulnerabilities in security software.
Aikido - Turning EDRs to Malicious Wipers Using 0-day Exploits
Overview
Syllabus
Aikido: Turning EDRs to Malicious Wipers Using 0-day Exploits
Taught by
Black Hat
Related Courses
-
Aikido - Turning EDRs to Malicious Wipers Using 0-day Exploits
-
Blasting Event-Driven Cornucopia - WMI-based User-Space Attacks Blind SIEMs and EDRs
-
Eliminating Triage Intermediaries for Zero-day Exploits Using a Decentralised Payout Protocol
-
How to Bypass AM-PPL & Disable EDRs - A Red Teamer's Story
