Passively read key from process memory without invoking kernel (windows 10)

Published: 2/12/2019
Passively read key from process memory without invoking kernel (windows 10)
Source: SECURITY.STACKEXCHANGE.COM

I have a process that loads into memory like any other process. It contains a special key. Our goal is to read this key inside memory...or while it is in transit across the data bus from cpu. The catch is that our solution has to be stealthy a nd undetected by the kernel , so no DMA, drivers or anything that invokes traditional system calls/routines. Anything that leverages the kernel can be detec

Read more
Related news
Comment
FACEBOOK