Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com
☎ 03 60 47 09 81 - info@securiteinfo.com
A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on Windows devices allows a local user to disable the agent.
No PoCs from references.
- https://github.com/ig-labs/EDR-ALPC-Block-POC
- https://github.com/plzheheplztrying/cve_monitor