Security Basics mailing list archives
Re: [Bulk] rootkit behavior
From: Edward Krack <eddie_krack () yahoo com>
Date: Wed, 02 Aug 2006 02:28:22 -0500
rainmann () sbcglobal net:
anyone know of any useful detection tools
http://www.xfocus.org/index.html X-Scan X-Scan: is giving the "Hacker Defender" rootkit a run for it money. and http://www.gmer.net/ GMER GMER: is a mix of RootkitRevealer & Process Explorer. and http://labs.idefense.com/releases/previews/HookExplorer/ Hook Explorer Hook Explorer: can tell you if a file is hidden behind legit programs fooling your firewall software. That's all I know of right now. Have fun! Edward Krack --------------------------------------------------------------------------- This list is sponsored by: Norwich University EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The NSA has designated Norwich University a center of Academic Excellence in Information Security. Our program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Using interactive e-Learning technology, you can earn this esteemed degree, without disrupting your career or home life. http://www.msia.norwich.edu/secfocus ---------------------------------------------------------------------------
Current thread:
- Re: [Bulk] rootkit behavior Edward Krack (Aug 02)