Y
Hacker News
new
|
ask
|
show
|
jobs
by
nickpsecurity
3613 days ago
Not if it's hypervisor-based monitoring with IO mediation. This is still a weak defence. Stronger model is kernel integrity + syscall restriction + MAC or capability protection for usage details.