I kind of want to make a blog post debunking Microsoft's claim that the EU preventing them locking down the kernel is what was responsible for the Crowdstrike outage.
Obviously Microsoft's attempt wasn't in good faith because the APIs that they offer today are still inferior to the kernel mode ones for EDR, but does anyone happen to have a list of the replacement APIs they offered at the time (i.e. back in 2009 when AV companies sued them for trying to lock out their products)?
Marcus Hutchins :verified: /
npub1t5…338yv
2024-07-24 01:36:11
Author Public Key
npub1t5y3qpya5m4v4tv73yw447uglfsn7j44znv2d38m2xsrah4kpm0qt338yvPublished at
2024-07-24 01:36:11Event JSON
{
"id": "55ad61bddd8b50ff5fa83676bd6fa87c6af5fdf80f2204107052edea84a8980e",
"pubkey": "5d0910049da6eacaad9e891d5afb88fa613f4ab514d8a6c4fb51a03edeb60ede",
"created_at": 1721784971,
"kind": 1,
"tags": [
[
"proxy",
"https://infosec.exchange/users/malwaretech/statuses/112838899903633707",
"activitypub"
]
],
"content": "I kind of want to make a blog post debunking Microsoft's claim that the EU preventing them locking down the kernel is what was responsible for the Crowdstrike outage.\n\nObviously Microsoft's attempt wasn't in good faith because the APIs that they offer today are still inferior to the kernel mode ones for EDR, but does anyone happen to have a list of the replacement APIs they offered at the time (i.e. back in 2009 when AV companies sued them for trying to lock out their products)?",
"sig": "2e248bf657e83907eba11428a3cd144c2f35f328c2f9412939fd97da7c01132c82bd0b4b51fc8c0344999581d35ec17222366d3af5b4e83e037bbbf3c9d6b347"
}