Skip to content

EspressoCake/Defender_Exclusions-BOF

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit
dist
dist
 
 
img
img
 
 
src
src
 
 
README.md
README.md
 
 

Repository files navigation

Defender Exclusions BOF

What

A BOF to determine Windows Defender exclusions:

  • Extensions
  • Processes
  • Folders

Why

Examples of using the C++ compiler to create BOFs without the need for the intermediary vtable dereferences.

Building

cd src
make all

Usage

  1. Load dist/cEnumerateDefender.cna
  2. Run in a Beacon:
    • cEnumDefenderException [1-3]

Outputs

image info

image info

image info

About

A BOF to determine Windows Defender exclusions.

Resources

Readme
Activity

Stars

239 stars

Watchers

5 watching

Forks

35 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages