TierZeroSecurity / edr_blockerLinks

Blocks EDR Telemetry by performing Person-in-the-Middle attack where network filtering is applied using iptables. The blocked destination IP addresses are parsed based on the server name in TLS Client Hello packet and the provided blocked server name (or blocked string) list in the file.
141Updated 10 months ago

Alternatives and similar repositories for edr_blocker

Users that are interested in edr_blocker are comparing it to the libraries listed below

Sorting: