Living off the Land

An attack strategy that uses legitimate, pre-installed system tools (PowerShell, WMI, certutil, msbuild) instead of custom malware. Because these tools are trusted by the operating system and security products, LotL techniques evade antivirus detection. Attackers blend in with normal admin activity.

Definição editorial da DecipherU. Para definições técnicas autoritativas, consulte NIST, ISO, ou o órgão normativo correspondente.