Index / Techniques / Process Injection
Technique Record · T1055

Process Injection

Publicly-reported instances of Process Injection bypassing endpoint security products. Maintained on the same basis for every technique in the Index.

19
recorded bypasses
13
products affected

Products recorded as bypassed by Process Injection

ProductEntriesHigh-confidenceMost recent
Microsoft 642025-08-14
CrowdStrike 222025-03-05
Google 112025-08-14
Palo Alto 112023-12-08
Pearson 112024-06-18
Respondus 112025-07-24
SentinelOne 112023-12-08
Skyhigh Security 112024-10-29
STRANGETRINITY 112023-08-03
TN ROM (HyperTN/MIUITN) 112025-11-05
Brave 112025-08-14
Trellix 102024-10-29
Cybereason 112023-12-08

All entries

ProductConfidenceDisclosedSource
TN ROM (HyperTN/MIUITN) high 2025-11-05github.com record →
Brave high 2025-08-14github.com record →
Microsoft high 2025-08-14github.com record →
Google high 2025-08-14github.com record →
Respondus high 2025-07-24github.com record →
Microsoft high 2025-06-25undercodetesting.com record →
CrowdStrike high 2025-03-05finalfrontiersecurity.com record →
Skyhigh Security high 2024-10-29github.com record →
Trellix medium 2024-10-29github.com record →
Pearson high 2024-06-18github.com record →
SentinelOne high 2023-12-08securityaffairs.com record →
Palo Alto high 2023-12-08securityaffairs.com record →
CrowdStrike high 2023-12-08securityaffairs.com record →
Microsoft high 2023-12-08securityaffairs.com record →
Cybereason high 2023-12-08securityaffairs.com record →
Microsoft high 2023-11-16chayanin-mews.medium.com record →
Microsoft medium 2023-10-28github.com record →
Microsoft medium 2023-08-21github.com record →
STRANGETRINITY high 2023-08-03riccardoancarani.github.io record →

Counts reflect distinct publicly-reported events on record; absence of an entry means no confirmed public report is on file.