@seclists.org
> Subject: [FD] Disable Windows Defender and most other 3rd party antiviruses
>
> Windows Defender and most other antivirus applications can be disabled by
> booting into safe mode and renaming their application directories before
> their AV services are started in Windows
I tested your POC on Windows 10 home, build 1904, and it failed to disable
Windows Defender. Windows Defender still loads in safe mode, so renaming the
"C:\Program Files (x86)\Windows Defender" folder fails because an executable in
the folder is running. To disable Windows Defender, you need t
Windows Defender and most other 3rd party antiviruses
Windows Defender and most other antivirus applications can be disabled by
booting into safe mode and renaming their application directories before
their AV services are started in Windows. The renaming of the directories
can be performed by
Windows Defender and most other antivirus applications can be disabled by
booting into safe mode and renaming their application directories before their
AV services are started in Windows. The renaming of the directories can be
performed by creating a Windows NT Service that is allowed to start
