Attackers have repurposed EDRSilencer, a red team tool, to block network communication of various EDR products, making malware harder to detect and remove. The tool leverages Windows Filtering Platform to deploy persistent filters targeting EDR processes, showcasing a trend where attackers use pentesting tools to disable or remove EDR solutions, emphasizing the need for enhanced security measures to combat evolving threats. ```
https://www.csoonline.com/article/3567074/attackers-repurpose-edrsilencer-to-evade-detection.html