We are onboarding a new customer and I have been asked to see if I can try and bypass our Sentinel One and Azure Sentinel and avoid logs to see if I can upload or get a user to upload malicious content so we know that our customer will not be open to this attack.
I mainly want to test this with a USB, I have tried a basic USB but of course, SentinelOne immediately blocks this, I can use MalDuino but I’m not sure how far I can get with this.
Ideally, I want to be able to make a user plug a basic USB in which will open a webpage with a google image search of “You’ve Been Hacked” memes.
But I need to bypass SentinelOne and avoid logs, eurgh! Ideas please!
I’m a Cyber Security Analyst in a MSSP 😄