DEF CON 33 - Dodging the EDR Bullet: A Training on Malware Stealth Tactics

Windows 10 VM with the following software pre-installed:

• Python 3.13.5
• Process Hacker
• System Informer
• Visual Studio 2022
• C++ Build Environment with MSVC
• Windows SDK
• Windows Driver Kit
• Windows WDK
• x64dbg
• WinDBG
• CFFExplorer
• PEBEar
• Sysinternals Suite
• OSRLoader

VM Images

• Download OVA (Base image) (size: 18 GB) - MD5 Checksum


• Download VirtualBox OVA (VirtualBox ready) (size: 18 GB) - MD5 Checksum


• Download VMWare OVA (VMWare Workstation ready) (size: 22 GB) - MD5 Checksum