You are here: silicon.com > Resources > White Papers > Professions and Industries > IT Professionals > Career Development

Career Development White Papers

Detect rootkits and rootkit behavior with these techniques

Overview This sample chapter, taken from Rootkits: Subverting the Windows Kernel, discusses two basic approaches to rootkit detection.

Rootkits can be difficult to detect, especially when they operate in the kernel. This is because akernel rootkit can alter functions used by all software, including those needed by security software.

This sample chapter from the Rootkits: Subverting the Windows Kernel discusses two basic approaches to rootkit detection: detecting the rootkit itself, and detecting the behavior of a rootkit. Once you become familiar with these approaches, you will be in a better position to defend yourself.

Title: Rootkits: Subverting the Windows Kernel
ISBN: 0321294319
Published: July 2005
Author: Jamie Butler, Greg Hoglund
Chapter: Chapter 10: Rootkit Detection
Published by Addison-Wesley Professional

Further White Paper Details
Publisher	TechRepublic	File Format	PDF
Date Published	April 2006	Downloads	79
Format	Downloads
Topics	Career Development

Did you find this white paper useful? 32 out of 50 users found this white paper useful

From fear to value; CIO strategies for propelling business through the economic crisis

Your aspiration: As a Chief Information Officer, drive change, innovation and efficiency to help build a smarter enterprise that will prosper amidst global competition. Your daily challenge: As a Chief...

Publisher:
IBM

Tags:
infrastructure management

How can today's CIO make the biggest impact on their organization? Learn more here

We listened to more than 2500 CIOs worldwide, including 158 CIOs from midsize firms. Those discussions showed us the demands on CIOs are changing, and in reaction, how today's...

Publisher:
IBM

Tags:
infrastructure management

Seven Tips & Tricks For Windows 7Â—Part 2

Seven Tips & Tricks For Windows 7—Part 2

Publisher:
Dell

Tags:
video conferencing

Seven Tips & Tricks For Windows 7Â—Part 3

Seven Tips & Tricks For Windows 7—Part 3

Publisher:
Dell

Tags:
video conferencing

Seven Tips & Tricks For Windows 7Â—Part 4

Seven Tips & Tricks For Windows 7—Part 4

Publisher:
Dell

Tags:
video conferencing

Symantec secures WholeSecurity

The list is used by eBay and Microsoft browser add-ons that aim to defend against fraud. Symantec has agreed to acquire privately held WholeSecurity, which makes products to fight phishing scams and detect malicious code attacks.

Microsoft anti-spyware tool gets a makeover

The addition of rootkit protection means Windows Defender can detect and remove rootkits, hacker tools designed to go undetected by security software. The tool, designed to protect PCs against hidden software, has been renamed "Windows Defender...

Microsoft targets Sony copy-protection tool

In its move to detect and remove the Sony BMG rootkit, Microsoft follows other makers of security software. Detection and removal of the rootkit component will also be in Windows Defender, the forthcoming update to Windows AntiSpyware that will...

"Highly critical" Mac OS X kernel hole unearthed

R is for Rootkits The proof-of-concept code exploits a security hole in the way Apple's operating system handles disk image files, the researcher wrote on a blog devoted to a 'Month of Kernel Bugs' campaign which promises to reveal details of a new...

Apple plugs 31 holes in OS X

R is for Rootkits Over the past few weeks bug hunters, as part of an initiative called the Month of the Kernel Bugs, have published details on several new vulnerabilities in Mac OS X. The security researcher who started the Month of the Kernel Bugs...

Security experts criticise Phorm

On Thursday, Phorm denied that Apropos had contained a rootkit but admitted that it did contain code to hide itself from other pieces of adware. R is for Rootkits In the blog post, F-Secure described Apropos as containing "one of the most...

Channel:
Security Strategy
Tags:
phorm

Featured White Papers

Harnessing the Power of Location Intelligence in the Public Sector

Throughout the world, public services today are under pressure. The current economic climate, where taxreceipts are naturally suppressed, provides very seriousfunding challenges. Moreover, in good times and bad, increasing regulation at the regional and national level is imposing additional duties and responsibilities on the public services without additional resources to carry them out. Store closures are changing the urban landscape. Demographic and/or economic change isincreasing demand for health and social services.Demand for decreased crime rates is focusing minds in law enforcement. And the threat of internationalterrorism is forcing greater contingency duties on the emergency services. The net result is a need to do more with lessÂ—quite a challenge.

Publisher:
Pitney Bowes

Buyers' Guide - How to ease the shift to mobile working

With momentum building behind mobile working, are higher costs inevitable when moving staff to laptops? Not necessarily. In fact it's possible to emerge with lower management overheads - and tighter security. Read on to find out more.

Publisher:
Intel

IBM Virtualization Services

Virtualization is a powerful technology and can have profound effects on the datacenter; however, it should be viewed as a component of an overall IT strategy that will be able to support the enterprise's needs. IDC recommends that enterprises look at theentire architecture and determine how to best deploy virtualization