Kernel32.dll vs ntdll.dll

Krematorij · Jul 30, 2025

Lately I've been thinking about the usefulness of ntdll.dll and the appearance of more and more proofs of concept that use this dll to bypass EDR's and AV's. Although it is a DLL with little documentation, it remains a strong candidate. In your opinion, should malware development focus on this DLL? (obviously all dll's are important for malware development, what I mean by this is, use ntdll.dll more).

CarmaK · Jul 31, 2025

tim6605 · Sep 26, 2025

Arthur · Sep 30, 2025

celine1 · Oct 4, 2025

elsnok · Nov 2, 2025

hiddin · Nov 23, 2025

xo046 · Dec 4, 2025

Exchanged · Feb 20, 2026

Kornip · Mar 3, 2026

tennor2024 · Mar 8, 2026

STNBLX · Apr 6, 2026

respect

ReaperRefs · Apr 16, 2026

bakedtt · May 18, 2026

covid192021 · May 26, 2026

respect

Shardfox · May 31, 2026

Stormchaser · Jun 6, 2026

SeniorBuyer · Saturday at 2:53 PM

Kernel32.dll vs ntdll.dll

Krematorij

Administrator

CarmaK

Newbie

tim6605

Hacker

Arthur

Hacker

celine1

Hacker

elsnok

Hacker

hiddin

Hacker

xo046

Hacker

Exchanged

Hacker

Kornip

Hacker

tennor2024

Hacker

STNBLX

Hacker

ReaperRefs

Hacker

bakedtt

Hacker

covid192021

Hacker

Shardfox

Newbie

Stormchaser

Newbie

SeniorBuyer

Hacker

Similar threads