Engineering antivirus evasion (Part III)
19 April 2022 at 10:05
Previous blog posts addressed the issue of static artefacts that can easily be caught by security software, such as strings and API imports: This one provides an additional layer of obfuscation to target another kind of detection mechanism used to monitor a programβs activity, i.e userland hooks. As usual, source code was published at https://github.com/scrt/avcleaner β¦ Continue reading Engineering antivirus evasion (Part III)