Whoaaa! #BHASIA26 The Effective Linux EDR Evaluation Testing for Red and Blue Team training for BlackHat is now 90% full - I did not expect that :D Need to increase the class - still have 1.5 months until the event! Join me!

#Linux Runtime and EDRs! It is beneficial to have telemetry visibility for mprotect_exec, especially to detect similar implementations to Donut loaders, such as recently published malasada or BOF loaders like bof-stager. I present a lot of interesting #redteam vs #blueteam use-cases during my #BHASIA26 #blackhat training - Effective Linux EDR Evaluation Testing for Red and Blue Team. Join me in Singapore - it's fully packed material, and it's gonna be 🔥 https://blackhat.com/asia-26/training/schedule/index.html#effective-linux-edr-evaluation-testing-for-red-and-blue-team-49690