Evading EDR
the definitive guide to defeating endpoint detection systems.
$125.69
- Paperback
312 pages
- Release Date
8 January 2024
Summary
Evading EDR: A Red Teamer’s Guide to Bypassing Endpoint Detection and Response
EDR, demystified! Stay a step ahead of attackers with this comprehensive guide to understanding the attack-detection software running on Microsoft systems-and how to evade it.
Nearly every enterprise uses an Endpoint Detection and Response (EDR) agent to monitor the devices on their network for signs of an attack. But that doesn’t mean security defenders grasp how these systems actually work. This…
Book Details
| ISBN-13: | 9781718503342 |
|---|---|
| ISBN-10: | 1718503342 |
| Author: | Matt Hand |
| Publisher: | No Starch Press,US |
| Imprint: | No Starch Press,US |
| Format: | Paperback |
| Number of Pages: | 312 |
| Release Date: | 8 January 2024 |
| Weight: | 369g |
| Dimensions: | 235mm x 178mm |
You Can Find This Book In
What They're Saying
Critics Review
“A great book for red and blue [people]! It is a great resource for anyone who wants to learn more about how EDRs work and Windows internals with a security perspective.”—Olaf Hartong, @olafhartong, researcher at FalconForce“If you spend any time around EDR’s, or are just interested in how they work… this book is an invaluable addition to your collection.”—Adam Chester, @xpn, RedTeamer at TrustedSec“A masterclass in understanding EDR internals…a very relevant handbook for both attackers and defenders to learn about the strengths, but also limitations and blind spots of EDR software.”—Arris Huijgen, @bitsadmin
About The Author
Matt Hand
Matt Hand is an experienced red team operator with over a decade of experience. His primary areas of focus are in vulnerability research and EDR evasion where he spends a large amount of time conducting independent research, developing tooling, and publishing content. Matt is currently a Service Architect at SpecterOps where he focuses on improving the technical and execution capabilities of the Adversary Simulation team, as well as serving as a subject matter expert on evasion tradecraft.
Returns
This item is eligible for free returns within 30 days of delivery. See our returns policy for further details.