Cylance is very keen that people recognize that "we do not do signature matching". https://blog.cylance.com/know-the-truth-signatures-and-multi-av-scanners … - but I would argue that ...
@VessOnSecurity @halvarflake You must have a very short list of "good" scanners, because all the engines I've reverse engineered use them.
-
-
@taviso@halvarflake Use - yes. Rely on - nope. F-PROT, McAfee, Kaspersky, etc. Scan strings are used only to trigger more powerful algos. -
@VessOnSecurity@taviso@halvarflake I encourage you to look at how vendors handle ELF files. - 11 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.