Twitter | Pretraživanje | |
Yarden Shafir
Can your EDR detect symbolic link callback rootkits? Because ours sure as heck can't. and I wrote about these!
Reply Retweet Označi sa "sviđa mi se" More
red plait 4. velj
Odgovor korisniku/ci @yarden_shafir @aionescu
if I understood correctly we need to check only links without name (bcs LinkTarget in union with Callback)
Reply Retweet Označi sa "sviđa mi se"
Yarden Shafir 4. velj
Odgovor korisniku/ci @real_redp @aionescu
Yes, that's true :)
Reply Retweet Označi sa "sviđa mi se"
Oliver Baumgart 2. velj
Odgovor korisniku/ci @yarden_shafir @aionescu
Can't wait for Part 2... Very nice find!
Reply Retweet Označi sa "sviđa mi se"
Asa Hunt 4 h
Odgovor korisniku/ci @yarden_shafir @aionescu
Good question... I'm gonna send this to our detection engineers and find out though!
Reply Retweet Označi sa "sviđa mi se"