The original post: /r/netsec by /u/oldboy21 on 2024-09-18 05:45:28.
Original Title: Improved SLEAPING sleepmask using Timers and APCs in order to spoof Timer Callback addresses at sleeping time achieving a more resilient sleep mask that works against great in-memory scanner like HSB, Moneta, etc. Also call stack return address detection is addressed in the SWAPPALA implementation.
You must log in or register to comment.