Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Testing Endpoint Protection - How Anyone Can Bypass Next Gen AV

via YouTube

Start learning Write review
CodeSignal Ad

Learn Generative AI, Prompt Engineering, and LLMs for Free

Learn More → GetSmarter Ad

Most AI Pilots Fail to Scale. MIT Sloan Teaches You Why — and How to Fix It

Learn More →

Overview

Google, IBM & Meta Certificates — All 10,000+ Courses at 40% Off
One annual plan covers every course and certificate on Coursera. 40% off for a limited time.
Get Full Access
Explore endpoint protection testing and next-generation antivirus bypass techniques in this 42-minute conference talk from Derbycon 2019. Delve into Kevin Gennuso's methodology, covering topics such as Atomic Red Team, malware, and MS Venom. Learn about vendor claims, configuration changes, false positives, and test environments. Discover insights on containment, automation, and standard user scenarios. Gain understanding of success and failure metrics, NDA considerations, and vendor reactions to testing. Uncover the intricacies of evaluating endpoint security solutions and their effectiveness against modern threats.

Syllabus

Intro
Who am I
How we got here
Methodology
Atomic Red Team
Malware
MS Venom
Not PowerShell NPS
Results
Conclusions
Vendor Claims
Clear Winner
Configuration Changes
False Positives
Did we have anything additional
Can the end point solution catch it
Can we bypass it
Can we cripple it
Test environment
Automation
Standard User
Containment
Success Failure
Does NDA Expire
Vendors Watching
Did the vendors threaten legal action
Did they know I was going to talk about Next Gen AV

Reviews

Start your review of Testing Endpoint Protection - How Anyone Can Bypass Next Gen AV

Start learning

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.