URL has been copied successfully!
SindriKit 1.3.0 Abuses Call Stack Spoofing to Bypass EDR Detection
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

SindriKit 1.3.0 Abuses Call Stack Spoofing to Bypass EDR Detection

SindriKit 1.3.0 introduces a significant advancement in evading Endpoint Detection and Response (EDR) systems by exploiting dynamic call stack spoofing. This method defeats telemetry that inspects kernel-transition call chains, going beyond just user-mode hooks. Previously, SindriKit 1.2.0 had already separated syscall invocations via indirect syscalls, redirecting to legitimate syscall return instructions in ntdll.dll to evade […] The post SindriKit 1.3.0 Abuses Call Stack Spoofing to Bypass EDR Detection appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

First seen on gbhackers.com

Jump to article: gbhackers.com/sindrikit-1-3-0-abuses-call-stack-spoofing/

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link