Publicly-reported techniques recorded as bypassing McAfee. Each entry is sourced to its original disclosure. This is a factual tally, maintained on the same basis for every vendor in the Index.
| Technique | Entries | High-confidence | Most recent |
|---|---|---|---|
| BYOVD (Vulnerable Driver) | 2 | 1 | 2025-08-07 |
| AMSI Bypass | 1 | 0 | 2024-08-02 |
| DLL Side-Loading | 1 | 1 | 2025-09-20 |
| Tamper-Protection Bypass | 1 | 0 | 2025-06-12 |
| Technique | Confidence | Disclosed | Source | |
|---|---|---|---|---|
| DLL Side-Loading | high | 2025-09-20 | www.tenable.com | record → |
| BYOVD (Vulnerable Driver) | medium | 2025-08-07 | mine2.io | record → |
| Tamper-Protection Bypass | medium | 2025-06-12 | github.com | record → |
| BYOVD (Vulnerable Driver) | high | 2025-05-30 | threatlabsnews.xcitium.com | record → |
| AMSI Bypass | medium | 2024-08-02 | github.com | record → |
Counts reflect distinct publicly-reported events on record; absence of an entry means no confirmed public report is on file, not that a product is unaffected.