cyberstars / tools / backstab
Backstab
—Kill protected EDR processes.
View on GitHub
CMIT
Demonstrates termination of protected processes on Windows via legitimate signed driver abuse. Used in EDR-evasion research.
Kill protected EDR processes.
Demonstrates termination of protected processes on Windows via legitimate signed driver abuse. Used in EDR-evasion research.