bird.makeup

Yesterday I finally finished part II of my anti rootkit evasion series, where I showcase some detections for driver "stomping", attack flawed implementations of my anti-rootkit, hide system threads via the PspCidTable and detect that as well. Enjoy! https://eversinc33.com/posts/anti-anti-rootkit-part-ii.html
See Tweet

Service load: 1862 hours to fetch all users
Source Code Support us on Patreon