- Aug 21, 2018
- 505
Hello all,
I've always been interested, how early can software(or driver of it) start during the boot up stage? I know kernel drivers, ring 0/1 stages etc, just a words for me.
Many AV/suites starts at a low level. Some malwares does that too. Some 3rd party firewalls not depending on Windows on firewall driver starts way before windows own firewall driver. So actually this is confusing for me. Now comes funny sentence "how low you can go"
Is there any softwares that can analyze which processes in order starts at boot up? Race-conditions between malware and firewall during boot-up? Zonealarm and Comodo firewalls is famous that you cant actually disable them during boot up stage. Sophisticated malware can connect to the internet way before windows firewall is loaded?
-sepik
I've always been interested, how early can software(or driver of it) start during the boot up stage? I know kernel drivers, ring 0/1 stages etc, just a words for me.
Many AV/suites starts at a low level. Some malwares does that too. Some 3rd party firewalls not depending on Windows on firewall driver starts way before windows own firewall driver. So actually this is confusing for me. Now comes funny sentence "how low you can go"
Is there any softwares that can analyze which processes in order starts at boot up? Race-conditions between malware and firewall during boot-up? Zonealarm and Comodo firewalls is famous that you cant actually disable them during boot up stage. Sophisticated malware can connect to the internet way before windows firewall is loaded?
-sepik