in reply to Re: win32-process-hide infected with mal/packer?
in thread win32-process-hide infected with mal/packer?
really so different from the following which is available on many (most?) variants of *nix, and is documented in the perl docs?
Yes it is, changing $0 doesn't hide the process from ps -- hiding a process is purely rootkit territory
|
---|
In Section
Seekers of Perl Wisdom