KillDefender (POC) Disable Windows Defender

[Kr4ker]

This is a proof of concept that disables Windows Defender by removing MsMpEng.exe privileges changing its integrity to "untrusted".
Therefore you could Stealthily killing the process and generate persistence and avoid the defense systems.

GitHub - pwn1sher/KillDefender: A small POC to make defender useless by removing its token privileges and lowering the token integrity

A small POC to make defender useless by removing its token privileges and lowering the token integrity - GitHub - pwn1sher/KillDefender: A small POC to make defender useless by removing its token...

github.com