Alice Climent-Pommeret
@AliceCliment
Malware and EDR stuff @harfanglab 🤓
ID:1059913433150377985
http://alice.climent-pommeret.red 06-11-2018 21:00:29
1,9K Tweets
2,8K Followers
268 Following
GMER - the art of exposing Windows rootkits in kernel mode : artemonsecurity.blogspot.com/2024/04/gmer-a… credits Artem I. Baranov
EDRSandBlast : a tool written in C that weaponize a vulnerable signed driver to bypass EDR detections : github.com/wavestone-cdt/…
I just discovered Artem I. Baranov blog and OMG?! If you're into windows kernel/internals it's an AMAZING goldmine 😯🤯
artemonsecurity.blogspot.com
I'm happy to announce that I recently started a new position at HarfangLab !
You can find here my very first post about Raspberry Robin and its clever anti-Defender emulator🥳
Thanks to the cool contribution from Canadian Centre for Cyber Security (cyber.gc.ca/en) #HollowsHunter can be used as ETW listener. It unlocks a new potential for much more powerful detection. Stay tuned for the upcoming release... (github.com/hasherezade/ho…)