Article discussing how to bypass the Execution Path Analysis used by the PatchFinder utility, avoiding Windows 2k/XP rootkit detection.
You can download it from the following link: https://packetstormsecurity.com/files/download/32694/bypassEPA.pdf
Source: https://packetstormsecurity.com/files/32694/bypassEPA.pdf.html