what is the difference between vmthook and vmtswap? #3225
Unanswered
Metaphysical1
asked this question in
Q&A
Replies: 2 comments
-
|
RE-EDIT The information I provided on this was inaccurate. |
Beta Was this translation helpful? Give feedback.
0 replies
-
|
I looked at the code. From what I can tell one of them just changes the entry in the vmt and the other one copies the entire vmt and changes stuff. This shouldn't make a difference in functionality and detection. Only thing I could think of is that vmtswap would be unnoticeable faster. Oh and vmthook seems to be incompatible with Linux when vmtswap isn't (at least there is no mention of it in the code) |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Osiris on linux defaults to use vmtswap, how is it compared against vmthook?
Beta Was this translation helpful? Give feedback.
All reactions