Explore advanced red team techniques for evading, bypassing, and disabling Microsoft's Advanced Threat Protection and Advanced Threat Analytics in this 58-minute Black Hat conference talk. Delve into post-breach tools, tactics, and techniques commonly employed by red teams to circumvent Windows Defender Advanced Threat Protection in Windows 10 Enterprise and Server 2012/16 environments. Gain insights into behavior analytics and learn strategies for overcoming detection mechanisms. Presented by Chris Thompson, this talk provides valuable knowledge for both offensive and defensive security professionals looking to understand and counter sophisticated threat protection systems.
Overview
Syllabus
Red Team Techniques for Evading, Bypassing & Disabling MS
Taught by
Black Hat