Search icon CANCEL
Arrow left icon
Explore Products
Best Sellers
New Releases
Books
Videos
Audiobooks
Learning Hub
Conferences
Free Learning
Arrow right icon
Arrow up icon
GO TO TOP
Endpoint Detection and Response Essentials

You're reading from   Endpoint Detection and Response Essentials Explore the landscape of hacking, defense, and deployment in EDR

Arrow left icon
Product type Paperback
Published in May 2024
Publisher Packt
ISBN-13 9781835463260
Length 170 pages
Edition 1st Edition
Arrow right icon
Author (1):
Arrow left icon
Guven Boyraz Guven Boyraz
Author Profile Icon Guven Boyraz
Guven Boyraz
Arrow right icon
View More author details
Toc

Table of Contents (14) Chapters Close

Preface 1. Part 1: The Fundamentals of Endpoint Security and EDR FREE CHAPTER
2. Chapter 1: Introduction to Endpoint Security and EDR 3. Chapter 2: EDR Architecture and Its Key Components 4. Chapter 3: EDR Implementation and Deployment Strategies 5. Part 2: Advanced Endpoint Security Techniques and Best Practices
6. Chapter 4: Unlocking Synergy – EDR Use Cases and ChatGPT Integration 7. Chapter 5: Navigating the Digital Shadows – EDR Hacking Techniques 8. Chapter 6: Best Practices and Recommendations for Endpoint Protection 9. Part 3: Future Trends and Strategies in Endpoint Security
10. Chapter 7: Leveraging DNS Logs for Endpoint Defense 11. Chapter 8: The Road Ahead of Endpoint Security 12. Index 13. Other Books You May Enjoy

Summary

In this chapter, we delved into the intricate world of offensive tactics, where threat actors skillfully exploit communication channels and turn the very features of OSs against them, establishing a covert presence within compromised systems. Let’s recap the key topics covered, complemented by hands-on code examples and real-life scenarios:

  • The foundation of the evasion life cycle: We explored the fundamental principles that underscore the life cycle of evasion, providing insights into the strategic planning and execution employed by offensive actors.
  • Function hooking DLLs and how to evade them: We provided a detailed exploration of how attackers utilize function hooking in DLLs and practical strategies to evade detection, showcasing the cat-and-mouse game between attackers and endpoint security.
  • Event Tracing for Windows (ETW) and how to bypass it: We provided a comprehensive look into evading detection through ETW, shedding light on techniques employed...
lock icon The rest of the chapter is locked
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Renews at £16.99/month. Cancel anytime