2024 Help me understand this report
Effects of Removing User-Land Hooks in Endpoint Protection During Attack Experiments
Abstract: This paper conducts research on current-generation Endpoint Detection and Response (EDR) solution design that identifies fundamental gaps in the prevention and detection of malicious cyber techniques. These fundamental gaps are the result of using "user-land hooks" or "user-mode hooks" into user and system processes as the sole mechanism to detect malicious cyber activity on endpoints (workstations and servers). When these user-land hooks are removed from processes, the EDR solution no longer has visibility in…
Search citation statements
Paper Sections
Select...
Citation Types
0
0
0
Year Published
2024
2024
Publication Types
Select...
1
Relationship
0
1
Authors
Journals
Cited by 1 publication
References 9 publications
0
0
0
scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.
Copyright © 2025 scite LLC. All rights reserved.
Made with 💙 for researchers
