A vendor-neutral, normalized, cited record of publicly-reported endpoint-security bypass techniques — each linked to its original source.
| Technique | Product | Confidence | Disclosed | Source | |
|---|---|---|---|---|---|
| Exploitation for Priv-Esc | Palo Alto Networks | high | 2026-06-01 | cyberscoop.com | record → |
| Exploitation for Priv-Esc | Elastic | high | 2026-05-28 | nvd.nist.gov | record → |
| Code-Signing Abuse | Microsoft | high | 2026-05-23 | www.positioniseverything.net | record → |
| Exploitation for Priv-Esc | F5 | high | 2026-05-22 | Microsoft Threat Intel | record → |
| Exploitation for Priv-Esc | Atlassian | high | 2026-05-22 | Microsoft Threat Intel | record → |
| Exploitation for Priv-Esc | Microsoft | medium | 2026-05-22 | Microsoft Threat Intel | record → |
| Exploitation for Priv-Esc | high | 2026-05-22 | hackaday.com | record → | |
| Disable or Modify Tools | Microsoft | high | 2026-05-21 | Huntress | record → |
| AMSI Bypass | Microsoft | high | 2026-05-21 | www.tiraniddo.dev | record → |
| Code-Signing Abuse | Microsoft | high | 2026-05-20 | cybersecuritynews.com | record → |
| ETW Tampering | Microsoft | medium | 2026-05-19 | medium.com | record → |
| Exploitation for Priv-Esc | Microsoft | high | 2026-05-18 | thehackernews.com | record → |
| Exploitation for Priv-Esc | Microsoft | high | 2026-05-18 | www.csoonline.com | record → |
| Masquerading | Apple | high | 2026-05-18 | www.sentinelone.com | record → |
| AMSI Bypass | Microsoft | high | 2026-05-16 | infosecwriteups.com | record → |
| Exploitation for Priv-Esc | Rapid7 | high | 2026-05-15 | nvd.nist.gov | record → |
| DLL Side-Loading | SentinelOne | high | 2026-05-14 | cybersecuritynews.com | record → |
| Valid Accounts | Microsoft | high | 2026-05-13 | lyrie.ai | record → |
| LSASS Credential Dumping | Microsoft | high | 2026-05-13 | theregister.com | record → |
| Exploitation for Priv-Esc | Wellbia.com Co., Ltd. | high | 2026-05-12 | blacksnufkin.github.io | record → |
| DLL Side-Loading | Microsoft | high | 2026-05-11 | The DFIR Report | record → |
| Valid Accounts | SOCFortress | high | 2026-05-11 | www.sentinelone.com | record → |
| LSASS Credential Dumping | high | 2026-05-06 | darkreading.com | record → | |
| Code-Signing Abuse | DigiCert | high | 2026-05-04 | cyberinsider.com | record → |