Awesome
Defender Exclusions BOF
What
A BOF to determine Windows Defender exclusions:
- Extensions
- Processes
- Folders
Why
Examples of using the C++ compiler to create BOFs without the need for the intermediary vtable dereferences.
Building
cd src
make all
Usage
- Load
dist/cEnumerateDefender.cna - Run in a
Beacon:cEnumDefenderException [1-3]
Outputs
