New PoolParty Process Injection Techniques Outsmart Top EDR Solutions

PoolParty is a new set of eight process injection techniques that can be used to execute code on Windows systems while avoiding detection by endpoint detection and response (EDR) systems.

According to Alon Leviev, a researcher at SafeBreach, the techniques are “more flexible than existing process injection techniques, as they can work across all processes without any limitations.”

The results were initially presented last week at the Black Hat Europe 2023 conference.The term “process injection” describes an evasion method for introducing arbitrary code into a target process.

Process injection techniques are numerous and include thread execution hijacking read more New PoolParty Process Injection Techniques Outsmart Top EDR Solutions.

Get up to date on the latest cybersecurity news and enhance your knowledge of cybersecurity with our thorough coverage of the dangers, breaches, and solutions.

Leave a Reply

Your email address will not be published. Required fields are marked *