ring0 design and purpose for sandbox and hook

purpose:api

1.provide customeAPI for special operatting.ide

2.hook key apidebug

3.anti sample's anti-hook, anti-debug, anti-VMci

4.virtual device provide.get

5.filter driver: protect important res for sandboxthread

6.get ready for muti-thread analyze on physical machine.import

相關文章
相關標籤/搜索