EDRs

This repo contains information about EDRs that can be useful during red team exercise.

Want to contribute simply run hook_finder64.exe C:\windows\system32\ntdll.dll and submit the output.

Credit

Mr.Un1k0d3r RingZer0 Team

Name		Name	Last commit message	Last commit date
Latest commit History 30 Commits
README.md		README.md
attivo.txt		attivo.txt
carbonblack.txt		carbonblack.txt
crowdstrike.txt		crowdstrike.txt
cylance.txt		cylance.txt
deepinstinct.txt		deepinstinct.txt
hook_finder64.c		hook_finder64.c
hook_finder64.exe		hook_finder64.exe
morphisec.txt		morphisec.txt
sentinelone.txt		sentinelone.txt
sophos.txt		sophos.txt
symantec.txt		symantec.txt

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

EDRs

CrowdStrike hooked ntdll.dll APIs

SentinelOne hooked ntdll.dll APIs

Cylance hooked ntdll.dll APIs (Thanks to Seemant Bisht)

Sophos hooked ntdll.dll APIs

Attivo Deception hooked ntdll.dll APIs

CarbonBlack hooked ntdll.dll APIs (Thanks to Hackndo)

Symantec hooked ntdll.dll APIs (Thanks to CarsonSallis)

DeepInstinct hooked ntdll.dll APIs (Thanks to P0chAcc0)

Morphises hooked ntdll.dll APIs

Credit

About

Releases

Packages

Languages

LYingSiMon/EDRs

Folders and files

Latest commit

History

Repository files navigation

EDRs

CrowdStrike hooked ntdll.dll APIs

SentinelOne hooked ntdll.dll APIs

Cylance hooked ntdll.dll APIs (Thanks to Seemant Bisht)

Sophos hooked ntdll.dll APIs

Attivo Deception hooked ntdll.dll APIs

CarbonBlack hooked ntdll.dll APIs (Thanks to Hackndo)

Symantec hooked ntdll.dll APIs (Thanks to CarsonSallis)

DeepInstinct hooked ntdll.dll APIs (Thanks to P0chAcc0)

Morphises hooked ntdll.dll APIs

Credit

About

Topics

Resources

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages