This hooking technique have described in the following blog post
This is the P.O.C source for hooking the system calls on Windows 10 (1903) using it's dynamic trace feature weakness
This hooking technique have described in the following blog post
This is the P.O.C source for hooking the system calls on Windows 10 (1903) using it's dynamic trace feature weakness