|
|
|
|
|
|
by HHad3
1212 days ago
|
|
|
Oldest trick in the book, good luck faking the PE signature to match the vendor's certificate ;-) (Jokes aside, the kernel does not provide any information about which application reads a canary page. It's best to just use this as necessary condition and take it with a good pinch of salt.) |
|
|