- Jul 21, 2011
- 669
Unbiased Review of Trusteer Rapport, Neil Kettle at 44CON London September 2011.
Here's a fun quote "Anyone who can read even a line of assembler can bypass Trusteer Raport on both OSX and Windows."
Basically, if you can point to any part of this program you can say "this piece doesn't work." It is not only a fundamentally flawed idea but the execution is awful (the encryption is laughable, essentially if you type a it encrypts to b etc.) There are multiple, very simple ways to bypass the would-be protection entirely and with very few lines of code.
It would be one thing if TR publicly said "Yeah, this is only for legacy malware" but it makes outrageous and overspecacular claims that it can stop 0day keyloggers etc.
Last edited by a moderator: