From Chatbot to Destroyer of Endpoints: Can ChatGPT Automate EDR Bypasses?


Posted on in Presentations

Join this session to explore EDR telemetry mechanisms, Kernel Callbacks, Userland API hooks, and ETW. Followed by a deep dive into the typical bypasses, unhooking, direct system calls, and more. EDR bypasses are not new but remain complex and primarily red-team tools, while their adoption in cybercrime is limited. But for how long? Can Smart ChatGPT prompt automate EDR bypasses? Demo included!

Participants
Daan Raman

Speaker

Head of Innovation, NVISO

Erik Van Buggenhout

Speaker

Director, NVISO & SANS Institute


Share With Your Community