|
|
|
|
|
|
by neodymiumphish
1040 days ago
|
|
|
That's definitely true. What we saw in the instances we've observed were the legit binaries from Cloudflared directly. It's definitely possible for them to build their own varients to avoid basic hash detection, or to implement alternative connectivity instead of routing to Cloudflared infrastructure over 7844. |
|
|