Mr-Un1k0d3r
commented
3 years ago let me try to install the trial and add the information
Open mayben0x opened 3 years ago
Mr-Un1k0d3r
commented
3 years ago let me try to install the trial and add the information
mayben0x
commented
3 years ago cool
mayben0x
commented
3 years ago have you tried TANIUM? :) this is one of the EDR's being avoided by hackers lol
fastlorenzo
commented
3 years ago Tanium:
C:\Users\avtest\Downloads>hook_finder64.exe c:\Windows\System32\ntdll.dll
Loading c:\Windows\System32\ntdll.dll
HookFinder Mr.Un1k0d3r RingZer0 Team
C:\Users\avtest\Downloads\hook_finder64.exe is loaded at 0x0000000000400000.
C:\Windows\SYSTEM32\ntdll.dll is loaded at 0x00007FFC70990000.
C:\Windows\System32\KERNEL32.DLL is loaded at 0x00007FFC6EA00000.
C:\Windows\System32\KERNELBASE.dll is loaded at 0x00007FFC6E250000.
C:\Windows\System32\msvcrt.dll is loaded at 0x00007FFC6F110000.
------------------------------------------
BASE 0x00007FFC70990000 MZÉ
PE 0x00007FFC709900E8 PE
ExportTableOffset 0x00007FFC70AE1180
OffsetNameTable 0x00007FFC70AE37A4
Functions Count 0x97f (2431)
------------------------------------------
------------------------------------------
Completed
You may want to include Tanium advance EDR solution. Being used by big organizations and to address insider threat.
https://try.tanium.com/?utm_campaign=01-D-PSP-OA-PPC-WW-Google-HFPOC&utm_source=google&utm_medium=cpc&utm_content=tanium&utm_term=%2Btanium&gclid=Cj0KCQjws-OEBhCkARIsAPhOkIad-9DIv8SBZfxq8o_vf7PSq2BOZctqNyFP630UmMY87HZm56n-gVQaAt5fEALw_wcB