Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Security
General Security Discussions
How to know if my Antivirus is really necessary?
Message
<blockquote data-quote="436880927" data-source="post: 828116"><p>C or C++ has nothing to do with this and neither does "white hacker organizations" (why does your race matter anyway?).</p><p></p><p>Even if MemProtect is supporting the blocking of DLLs according to the rules configuration with PsSetLoadImageNotifyRoutine/Ex, it still isn't an issue - and it isn't explicit prevention of code injection either because it doesn't just block that. It doesn't change the fact that if someone is at the same privilege level as you, it is a game of cat and mouse.</p><p></p><p>You might not be aware of it, but blocking "DLL injection" is only half of the solution. What about file-less injection? Oh, and for the record, kernel-mode callbacks like PsSetLoadImageNotifyRoutine/Ex won't stop reflective DLL loading.</p><p></p><p>I don't need to put my money where my mouth is. I am not going to spend time "putting my money where my mouth is" on a geek security software forum. You are going to have to believe me or disbelieve me. You are more than welcome to hire a consulant and be told I am right or do necessary research and find out that I am right.</p><p></p><p>Your obsession with MemProtect is concerning to me, but each to their own.</p></blockquote><p></p>
[QUOTE="436880927, post: 828116"] C or C++ has nothing to do with this and neither does "white hacker organizations" (why does your race matter anyway?). Even if MemProtect is supporting the blocking of DLLs according to the rules configuration with PsSetLoadImageNotifyRoutine/Ex, it still isn't an issue - and it isn't explicit prevention of code injection either because it doesn't just block that. It doesn't change the fact that if someone is at the same privilege level as you, it is a game of cat and mouse. You might not be aware of it, but blocking "DLL injection" is only half of the solution. What about file-less injection? Oh, and for the record, kernel-mode callbacks like PsSetLoadImageNotifyRoutine/Ex won't stop reflective DLL loading. I don't need to put my money where my mouth is. I am not going to spend time "putting my money where my mouth is" on a geek security software forum. You are going to have to believe me or disbelieve me. You are more than welcome to hire a consulant and be told I am right or do necessary research and find out that I am right. Your obsession with MemProtect is concerning to me, but each to their own. [/QUOTE]
Insert quotes…
Verification
Post reply
Top
