Exploiting a Vulnerable Minifilter Driver to Create a Process Killer
Exploiting a Vulnerable Minifilter Driver to Create a Process Killer
12 February 2024
The technique involves using a vulnerable signed Minifilter Driver to create a program capable of terminating a targeted process, particularly to evade detection by security solutions like EDR.