Welcome to our

Cyber Security News Aggregator

Cyber Tzar

provide a

cyber security risk management

platform; including automated penetration tests and risk assesments culminating in a "cyber risk score" out of 1,000, just like a credit score.

First slide label

Some representative placeholder content for the first slide.

Second slide label

Some representative placeholder content for the second slide.

Third slide label

Some representative placeholder content for the third slide.

Using EDR-Redir To Break EDR Via Bind Link and Cloud Filter

published on 2025-10-26 14:03:43 UTC by /u/Cold-Dinosaur
Content:

EDR-Redir uses a Bind Filter (mini filter bindflt.sys) and the Windows Cloud Filter API (cldflt.sys) to redirect the Endpoint Detection and Response (EDR) 's working folder to a folder of the attacker's choice. Alternatively, it can make the folder appear corrupt to prevent the EDR's process services from functioning.

submitted by /u/Cold-Dinosaur
[link] [comments]

Article: Using EDR-Redir To Break EDR Via Bind Link and Cloud Filter - published about 9 hours ago.

https://www.reddit.com/r/netsec/comments/1oglfix/using_edrredir_to_break_edr_via_bind_link_and/
Published: 2025 10 26 14:03:43
Received: 2025 10 26 14:04:55
Feed: /r/netsec - Information Security News and Discussion
Source: /r/netsec - Information Security News and Discussion
Category: Cyber Security
Topic: Cyber Security
Views: 2