😴
gatari
  • πŸ‘‹root@gatari
  • πŸ”«Active Directory (Boxes)
    • Access Walkthrough
  • πŸ”΄Red Team
    • What is Windows Defender?
    • Post-Exploitation on Disk
    • Command and Control (C2)
      • Signatured by Default
      • Bring Your Own Loader
    • Creating A C2 Framework
      • Prototyping
      • Interfaces
      • Endpoints & Listeners
  • 🚩CTF Writeups
    • 🀑GCTF 2022
      • πŸͺ„ret2secret
      • 🀑login
    • 🀑LNC 2023
      • πŸ‘½Alien Portal
    • 🀑Gryphons Mini-CTF 2023
      • πŸ‘¨β€πŸ’»Web
        • πŸ₯ΆChill
        • πŸͺ Leaked Login
        • πŸͺCookie Monster
        • ✈️Traveller
        • 🀯Headers
      • ☠️Pwn
        • 🐱Netcat
        • πŸ‘¨β€πŸ’»Login
        • πŸ‘©β€πŸ’»Login 2
        • πŸ§‘β€πŸ’»Login 3
      • βͺReverse
        • πŸ”«Valorant Aimbot
        • 🀣WannaLaugh
        • πŸͺšHacksaw
        • 🀫Secret
        • ❓Command & ...POST?
        • πŸ’€Bruh
      • 🧠Sanity Check
        • πŸ‡¨πŸ‡³ζ—©δΈŠε₯½δΈ­ε›½
        • πŸͺ‘Needle in a Haystack(s)
      • πŸ“€Crypto
        • 🀦Ascee? Asskey?
  • πŸ“˜Reviews
    • 😭CRTO - Certified Red Team Operator
Powered by GitBook
On this page
  1. Red Team

What is Windows Defender?

What is Windows Defender? Can I eat that?

PreviousAccess WalkthroughNextPost-Exploitation on Disk

Last updated 1 year ago

Windows Defender, officially known as Microsoft Defender Antivirus, is a cornerstone in Microsoft's efforts to provide built-in security for its Windows Operating System. Windows Defender is designed to protect computers from a wide array of security threats, especially malware.

Windows Defender is installed on most Windows devices, in fact, it's probably installed the device you're using to read this blog.

You can also check that it's enabled from the Virus & Threat Protection dashboard.

For those studying for the OSCP (Offensive Security Certified Professional), you probably wouldn't have to touch Windows Defender as AV Evasion is outside the scope of the exam.

Shifting from the OSCP's approach of deploying heavily signatured tools without much worry of detection, to adopting a more discreet and detection-conscious methodology may be challenging initially.

The purpose of this blog isn't to provide an exhaustive guide on evading every antivirus vendor out there. Rather, I'm sharing a few methods that I've discovered through my research and found effective in my own experience.

πŸ”΄