Comment on Microsoft is moving antivirus providers out of the Windows kernel. Hopefully anti-cheat will be next

<- View Parent
DarkMetatron@feddit.org ⁨3⁩ ⁨weeks⁩ ago

There already is a API for this with ebpf for Windows and it is the same API that can be used on Linux (because it originates from Linux).

microsoft.github.io/ebpf-for-windows/

EBPF still runs in Kernel space but in a much more limited and confined way.

source
Sort:hotnewtop