LOLBAS

public-mirrors/LOLBAS

Fork 0

mirror of https://github.com/LOLBAS-Project/LOLBAS synced 2024-12-25 22:39:27 +01:00

Commit Graph

Author	SHA1	Message	Date
John Lambert	ecbc2f817f	Add lolbin for fltMC.exe Used by redteams for defense evasion to disable drivers used by agents like sysmon https://www.darkoperator.com/blog/2018/10/5/operating-offensively-against-sysmon https://github.com/oddcod3/Phantom-Evasion/blob/master/Modules/post-exploitation/Postex_CMD_UnloadSysmonDriver_windows.py	2021-09-18 17:43:59 -07:00

Author

SHA1

Message

Date

John Lambert

ecbc2f817f

Add lolbin for fltMC.exe

Used by redteams for defense evasion to disable drivers used by agents like sysmon

https://www.darkoperator.com/blog/2018/10/5/operating-offensively-against-sysmon
https://github.com/oddcod3/Phantom-Evasion/blob/master/Modules/post-exploitation/Postex_CMD_UnloadSysmonDriver_windows.py

2021-09-18 17:43:59 -07:00

1 Commits