- Organizations such as institutions and companies use various security products to prevent security threats.
- Even in general user environments where there is no separate organization responsible for security, most basic security products are installed.
- Attackers use defense evasion strategies to bypass the detection of security products after the initial infiltration.
- One way to bypass file-based detection is to bypass the signature of AntiVirus.
- AhnLab EDR can be used to detect defense evasion techniques targeting Linux.
https://asec.ahnlab.com/ko/66260/