Introduction Authors: Max Hirschberger & Ogulcan Ugur Process Parameter Poisoning (P3) is an attack technique we developed that is used to inject code in foreign processes, without triggering typical detection mechanisms. Its ability to fly under the radar has been tested against four market leading Endpoint Detection and Response (EDR) solutions. Code injection succeeded in all cases and no alerts were created, even though the EDRs were configured to detect, block and remediate.