Publicly-reported techniques recorded as bypassing Trellix. Each entry is sourced to its original disclosure. This is a factual tally, maintained on the same basis for every vendor in the Index.
| Technique | Entries | High-confidence | Most recent |
|---|---|---|---|
| Exploitation for Priv-Esc | 2 | 2 | 2024-01-09 |
| AMSI Bypass | 1 | 1 | 2023-10-04 |
| Process Injection | 1 | 0 | 2024-10-29 |
| Tamper-Protection Bypass | 1 | 0 | 2025-06-12 |
| Technique | Confidence | Disclosed | Source | |
|---|---|---|---|---|
| Tamper-Protection Bypass | medium | 2025-06-12 | github.com | record → |
| Process Injection | medium | 2024-10-29 | github.com | record → |
| Exploitation for Priv-Esc | high | 2024-01-09 | www.sentinelone.com | record → |
| AMSI Bypass | high | 2023-10-04 | www.sentinelone.com | record → |
| Exploitation for Priv-Esc | high | 2023-06-09 | feedly.com | record → |
Counts reflect distinct publicly-reported events on record; absence of an entry means no confirmed public report is on file, not that a product is unaffected.