Living off the Land

An attack strategy that uses legitimate, pre-installed system tools (PowerShell, WMI, certutil, msbuild) instead of custom malware. Because these tools are trusted by the operating system and security products, LotL techniques evade antivirus detection. Attackers blend in with normal admin activity.

Definición editorial de DecipherU. Para definiciones técnicas autorizadas, consulta NIST, ISO, o el organismo de normalización correspondiente.