Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Software
Security Apps
Other security for Windows, Mac, Linux
WiseVector Free AI Driven Security
Message
<blockquote data-quote="In2an3_PpG" data-source="post: 790468" data-attributes="member: 56957"><p><span style="font-family: 'Arial'"><span style="font-size: 15px">Hi, [USER=76851]@WiseVector[/USER] </span></span></p><p><span style="font-family: 'Arial'"></span></p><p><span style="font-family: 'Arial'"><span style="font-size: 15px">I'd like to thank you for spending the time to read my questions and respond to them and I do apologize for the delay in this reply. Without further delay... let's just jump right in! <img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite109" alt=":)" title="Smile :)" loading="lazy" data-shortname=":)" /></span></span></p><p><span style="font-family: 'Arial'"><span style="font-size: 15px"></span></span></p><p><span style="font-family: 'Arial'"><span style="font-size: 15px">1. The officially documented mechanisms for filtering process creation from kernel-mode should be fine for on-execution scanning purposes. Who told you otherwise? I'd love to hear about why it isn't suitable for you.</span></span></p><p><span style="font-family: 'Arial'"><span style="font-size: 15px"></span></span></p><p><span style="font-family: 'Arial'"><span style="font-size: 15px">2. There is no point in you trying to justify your decisions by piggybacking off the choices made by a third-party vendor you are not even a partner of - you should be making your own decisions based on your own judgement, otherwise you may as well just be a re-seller for someone else's product.</span></span></p><p><span style="font-family: 'Arial'"><span style="font-size: 15px"></span></span></p><p><span style="font-family: 'Arial'"><span style="font-size: 15px">My point of view on the matter is that relying on code injection and API hooking to achieve results that can be achieved without code injection and API hooking (in this case, they can, and the implementation would be far more reliable) is nothing but ignorance.</span></span></p><p><span style="font-family: 'Arial'"><span style="font-size: 15px"></span></span></p><p><span style="font-family: 'Arial'"><span style="font-size: 15px">Kind Regards,</span></span></p><p><span style="font-size: 15px"><span style="font-family: 'Arial'">In2an3_PpG</span></span></p></blockquote><p></p>
[QUOTE="In2an3_PpG, post: 790468, member: 56957"] [FONT=Arial][SIZE=15px]Hi, [USER=76851]@WiseVector[/USER] [/SIZE] [SIZE=15px]I'd like to thank you for spending the time to read my questions and respond to them and I do apologize for the delay in this reply. Without further delay... let's just jump right in! :) 1. The officially documented mechanisms for filtering process creation from kernel-mode should be fine for on-execution scanning purposes. Who told you otherwise? I'd love to hear about why it isn't suitable for you. 2. There is no point in you trying to justify your decisions by piggybacking off the choices made by a third-party vendor you are not even a partner of - you should be making your own decisions based on your own judgement, otherwise you may as well just be a re-seller for someone else's product. My point of view on the matter is that relying on code injection and API hooking to achieve results that can be achieved without code injection and API hooking (in this case, they can, and the implementation would be far more reliable) is nothing but ignorance. Kind Regards,[/SIZE][/FONT] [SIZE=15px][FONT=Arial]In2an3_PpG[/FONT][/SIZE] [/QUOTE]
Insert quotes…
Verification
Post reply
Top
