|
@@ -1,7 +1,7 @@
|
|
|
# BlindEventlog
|
|
# BlindEventlog
|
|
|
Blind Eventlog by suspending its threads. This technique requires elevated privileges.
|
|
Blind Eventlog by suspending its threads. This technique requires elevated privileges.
|
|
|
|
|
|
|
|
-Be aware that all events, from the period the threads were suspended, will be pushed to Eventlog the moment the threads are resumed.
|
|
|
|
|
|
|
+>Be aware that all events, from the period the threads were suspended, will be pushed to Eventlog the moment the threads are resumed.
|
|
|
|
|
|
|
|
## Options
|
|
## Options
|
|
|
* `suspend`: find and suspend all Eventlog threads and disrupt its functionality.
|
|
* `suspend`: find and suspend all Eventlog threads and disrupt its functionality.
|
REDMED-X