Windows/Kernel
Kernel Callback Functions
구조개발자
2020. 8. 1. 14:17
https://www.n4r1b.com/posts/2020/03/dissecting-the-windows-defender-driver-wdfilter-part-3/
Dissecting the Windows Defender Driver - WdFilter (Part 3) :: Up is Down and Black is White — n4r1b
Welcome back to Dissecting the Windows Defender Driver, in the previous part we saw how WdFilter handles the loading of images in memory through an ImageLoad callback routine, we also saw how new threads are checked in two different Thread-creation callbac
www.n4r1b.com
이미지 로드 통지 콜백의 또 다른 버젼? SeRegisterImageVerificationCallback().
오랜만의 포스팅이네요. 한 동안 조~금 바빴네요.. 오늘은 오랜만의 포스팅이니 짧고 간단한걸로 준비했습...
blog.naver.com