• caglararli@hotmail.com
  • 05386281520

Does CrowdStrike Falcon get validated by the Windows kernel as being crash-free?

Çağlar Arlı      -    19 Views

Does CrowdStrike Falcon get validated by the Windows kernel as being crash-free?

With Linux, eBPF programs are validated as not causing crashes. Apparently that validation has had errors previously because of bugs in the Linux kernel.

How is CrowdStrike Falcon implemented on Windows. Did CrowdStrike run into a bug in Windows where the program passed validation and crashed? Or does this validation not exist at all on the Windows side?