Red Team Techniques for Evading, Bypassing, and Disabling MS Advanced Threat Protection and Advanced Threat Analytics

Explore advanced red team techniques for evading, bypassing, and disabling Microsoft's Advanced Threat Protection and Advanced Threat Analytics in this 58-minute Black Hat conference talk. Delve into post-breach tools, tactics, and techniques commonly employed by red teams to circumvent Windows Defender Advanced Threat Protection in Windows 10 Enterprise and Server 2012/16 environments. Gain insights into behavior analytics and learn strategies for overcoming detection mechanisms. Presented by Chris Thompson, this talk provides valuable knowledge for both offensive and defensive security professionals looking to understand and counter sophisticated threat protection systems.