Secure Planet Training Courses Updated For 2019 - Click Here

There are new available articles, click to refresh the page.

Yesterday — January 11^th 2026Your RSS feeds

/r/netsec - Information Security News & Discussion
EDRStartupHinder: EDR Startup Process Blocker
January 11^th 2026 at 10:13

EDRStartupHinder: EDR Startup Process Blocker

By: ／u／Cold-Dinosaur

submitted by /u/Cold-Dinosaur
[link] [comments]

🏷️ My labels
- ❌
Article tags
- ❌
- r/netsec
January 11^th 2026 at 10:13

Before yesterdayYour RSS feeds

/r/netsec - Information Security News & Discussion
EDR-Redir V2: Blind EDR With Fake "Program Files"
November 1^st 2025 at 10:52

EDR-Redir V2: Blind EDR With Fake "Program Files"

By: ／u／Cold-Dinosaur

EDR-Redir V2 can redirect entire folders like "Program Files" to point back to themselves, except for the folders of Antivirus, EDR. This means that other software continues to function normally, while only the EDR is redirected or blocked.

submitted by /u/Cold-Dinosaur
[link] [comments]

🏷️ My labels
- ❌
Article tags
- ❌
- r/netsec
November 1^st 2025 at 10:52

/r/netsec - Information Security News & Discussion
Using EDR-Redir To Break EDR Via Bind Link and Cloud Filter
October 26^th 2025 at 14:03

Using EDR-Redir To Break EDR Via Bind Link and Cloud Filter

By: ／u／Cold-Dinosaur

EDR-Redir uses a Bind Filter (mini filter bindflt.sys) and the Windows Cloud Filter API (cldflt.sys) to redirect the Endpoint Detection and Response (EDR) 's working folder to a folder of the attacker's choice. Alternatively, it can make the folder appear corrupt to prevent the EDR's process services from functioning.

submitted by /u/Cold-Dinosaur
[link] [comments]

🏷️ My labels
- ❌
Article tags
- ❌
- r/netsec
October 26^th 2025 at 14:03

/r/netsec - Information Security News & Discussion
DefenderWrite: Abusing Whitelisted Programs for Arbitrary Writes into Antivirus's Operating Folder
October 19^th 2025 at 13:51

DefenderWrite: Abusing Whitelisted Programs for Arbitrary Writes into Antivirus's Operating Folder

By: ／u／Cold-Dinosaur

submitted by /u/Cold-Dinosaur
[link] [comments]

🏷️ My labels
- ❌
Article tags
- ❌
- r/netsec
October 19^th 2025 at 13:51

/r/netsec - Information Security News & Discussion
IAmAntimalware: Inject Malicious Code Into Antivirus
October 11^th 2025 at 09:45

IAmAntimalware: Inject Malicious Code Into Antivirus

By: ／u／Cold-Dinosaur

submitted by /u/Cold-Dinosaur
[link] [comments]

🏷️ My labels
- ❌
Article tags
- ❌
- r/netsec
October 11^th 2025 at 09:45

/r/netsec - Information Security News & Discussion
EDR-Freeze: A Tool That Puts EDRs And Antivirus Into A Coma State
September 21^st 2025 at 03:22

EDR-Freeze: A Tool That Puts EDRs And Antivirus Into A Coma State

By: ／u／Cold-Dinosaur

submitted by /u/Cold-Dinosaur
[link] [comments]

🏷️ My labels
- ❌
Article tags
- ❌
- r/netsec
September 21^st 2025 at 03:22

/r/netsec - Information Security News & Discussion
WSASS - Old But Gold, Dumping LSASS With Windows Error Reporting On Modern Windows 11
September 13^th 2025 at 07:38

WSASS - Old But Gold, Dumping LSASS With Windows Error Reporting On Modern Windows 11

By: ／u／Cold-Dinosaur

submitted by /u/Cold-Dinosaur
[link] [comments]

🏷️ My labels
- ❌
Article tags
- ❌
- r/netsec
September 13^th 2025 at 07:38

/r/netsec - Information Security News & Discussion
Windows Defender's vulnerability: Break The Protective Shell Of Windows Defender With The Folder Redirect Technique
September 8^th 2025 at 13:47

Windows Defender's vulnerability: Break The Protective Shell Of Windows Defender With The Folder Redirect Technique

By: ／u／Cold-Dinosaur

submitted by /u/Cold-Dinosaur
[link] [comments]

🏷️ My labels
- ❌
Article tags
- ❌
- r/netsec
September 8^th 2025 at 13:47

/r/netsec - Information Security News & Discussion
Stealthy Persistence With Non-Existent Executable File
September 6^th 2025 at 07:00

Stealthy Persistence With Non-Existent Executable File

By: ／u／Cold-Dinosaur

submitted by /u/Cold-Dinosaur
[link] [comments]

🏷️ My labels
- ❌
Article tags
- ❌
- r/netsec
September 6^th 2025 at 07:00

/r/netsec - Information Security News & Discussion
Countering EDRs With The Backing Of Protected Process Light (PPL)
August 23^rd 2025 at 08:57

Countering EDRs With The Backing Of Protected Process Light (PPL)

By: ／u／Cold-Dinosaur

submitted by /u/Cold-Dinosaur
[link] [comments]

🏷️ My labels
- ❌
Article tags
- ❌
- r/netsec
August 23^rd 2025 at 08:57

/r/netsec - Information Security News & Discussion
Pentest Trick: Out of sight, out of mind with Windows Long File Names
August 10^th 2025 at 02:28

Pentest Trick: Out of sight, out of mind with Windows Long File Names

By: ／u／Cold-Dinosaur

submitted by /u/Cold-Dinosaur
[link] [comments]

🏷️ My labels
- ❌
Article tags
- ❌
- r/netsec
August 10^th 2025 at 02:28

/r/netsec - Information Security News & Discussion
Masquerade the Windows "Program Files" path with Unicode "En Quad" character.
February 4^th 2025 at 03:00

Masquerade the Windows "Program Files" path with Unicode "En Quad" character.

By: ／u／Cold-Dinosaur

submitted by /u/Cold-Dinosaur
[link] [comments]

🏷️ My labels
- ❌
Article tags
- ❌
- r/netsec
February 4^th 2025 at 03:00

/r/netsec - Information Security News & Discussion
New way to exploit BYOVD exploits with symbolic links.
January 27^th 2025 at 08:37

New way to exploit BYOVD exploits with symbolic links.

By: ／u／Cold-Dinosaur

submitted by /u/Cold-Dinosaur
[link] [comments]

🏷️ My labels
- ❌
Article tags
- ❌
- r/netsec
January 27^th 2025 at 08:37