Skip to main content
Press slash or control plus K to focus the search. Use the arrow keys to navigate results and press enter to open a threat.

Threats Tagged 'kernel exploit'

View all threats tagged with 'kernel exploit'. Filter and sort to focus on specific types of threats.

Pro Console Lifetime

Stop chasing alerts. Route them.

Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.

Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)

View Plans & Pricing

API access activates after upgrading in Console -> Billing.

Breach by OffSeqOFFSEQFRIENDS — 25% OFF

Check if your credentials are on the dark web

Instant breach scanning across billions of leaked records. Free tier available.

Scan now

Filter Threats

Narrow down the results by type, severity, or affected countries

Search threats by title, CVE ID, or description. Maximum 100 characters.
Active filters (1):Tag: kernel exploit

Threats Tagged 'kernel exploit'

Click on any threat for detailed analysis and mitigation recommendations

Not very gentlemanly: Analyzing a zero-day exploit used to disable targets' EDRs
0

The Gentlemen ransomware group has exploited a previously unknown zero-day vulnerability in a third-party driver (ktapi.sys from Kontron) to disable endpoint detection and response (EDR) systems. This bring-your-own-vulnerable-driver (BYOVD) attack bypasses Windows kernel exploit mitigations, allowing attackers to execute privileged kernel functions from user mode and terminate security processes such as Windows Defender, ESET, Palo Alto Cortex XDR, and SentinelOne. The vulnerability was not publicly documented and was absent from known vulnerable driver blocklists at the time of discovery. No patch or official remediation has been reported.

Join the discussion

Showing 1 to 1 of 1 result

Filters:Tag: kernel exploit
Page 1 of 1
OffSeq TrainingCredly Certified

Lead Pen Test Professional

Technical5-day eLearningPECB Accredited
View courses