RootKit Detection Tools and Utilities

RootKit Detection Tools and Utilities
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 Anti-Virus Software    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
RootKit Detection Tools and Utilities optikl 01-05-2007
Posted by optikl on January 5, 2007, 7:52 am
If you were  Registered and logged in, you could reply and use other advanced thread options
With multiple developers jumping on the bandwagon to come up with detection
tools, I'm just curious: how big a problem or prevalent are rootkits? I'm
asking because I don't know.

--
Remove netnews to reply



Posted by Frederic Bonroy on January 5, 2007, 8:24 am
If you were  Registered and logged in, you could reply and use other advanced thread options
optikl a écrit :

> With multiple developers jumping on the bandwagon to come up with detection
> tools, I'm just curious: how big a problem or prevalent are rootkits? I'm
> asking because I don't know.

It looks to me, and it seems like it's not just my opinion, that current
rootkits are essentially rehashed stealth. There is an entire book
dedicated to rootkits and stealth (Hoglund and Butler's "Rootkits") that
describes stealth techniques in detail. It's very technical, so the
average script kiddie is not likely to implement it. This said, I don't
know how prevalent stealth malware is currently.

Of course, I suppose that as an anti-virus company you can't afford not
to jump on that bandwagon, regardless of whether or not rootkits/stealth
malware actually pose a real threat.

Posted by kurt wismer on January 6, 2007, 12:53 am
If you were  Registered and logged in, you could reply and use other advanced thread options
optikl wrote:
> With multiple developers jumping on the bandwagon to come up with detection
> tools, I'm just curious: how big a problem or prevalent are rootkits? I'm
> asking because I don't know.

i think you're asking the wrong question...

i think you should be asking "how big a problem is stealth"... the so
called 'rootkits' are just a means to that end... now, take into account
the financial motivation behind malware nowadays and the free access
to 'rootkit' source code and r&d on the net, and you will probably
realize that however bad the stealth problem may be it's almost
certainly going to get considerably worse...

there will come a time when no serious commercial malware will be
without stealth technology in some form or another... free development
and free code that adds value to commercial malware - it's kind of like
free money, everyone (in the commercial black hat camp at least) will
want some of that...

--
"it's not the right time to be sober
now the idiots have taken over
spreading like a social cancer,
is there an answer?"

Similar ThreadsPosted
Rootkit ? June 6, 2006, 9:30 am
WARNING: New Rootkit? April 27, 2006, 12:35 pm
OT: System utilities August 23, 2006, 12:15 pm
vcom fix-it utilities 7 October 13, 2006, 8:56 am
IceSword Rootkit Revealer October 6, 2005, 2:01 pm
Norton Systemworks Rootkit January 27, 2006, 3:14 pm
[ANN] AVG Anti-Rootkit Beta available August 7, 2006, 12:42 pm
anti( MBR) rootkit that runs on win 98? April 18, 2008, 8:57 am
Preventing rootkit.agent December 18, 2008, 2:58 pm
Protecting your privacy using WinClearup Utilities 2006 June 9, 2006, 12:12 am

The site map in XML format XML site map

Contact Us | Privacy Policy