Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

Re: [Bulk] rootkit behavior

From: Edward Krack <eddie_krack () yahoo com>
Date: Wed, 02 Aug 2006 02:28:22 -0500
rainmann () sbcglobal net:



anyone know of any useful detection tools


 
http://www.xfocus.org/index.html
X-Scan
X-Scan: is giving the "Hacker Defender" rootkit a run for it money.

        and

http://www.gmer.net/
GMER
GMER: is a mix of RootkitRevealer & Process Explorer.

        and

http://labs.idefense.com/releases/previews/HookExplorer/
Hook Explorer
Hook Explorer: can tell you if a file is hidden behind legit programs
fooling your firewall software.


That's all I know of right now.
Have fun!

Edward Krack



---------------------------------------------------------------------------
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence 
in Information Security. Our program offers unparalleled Infosec management 
education and the case study affords you unmatched consulting experience. 
Using interactive e-Learning technology, you can earn this esteemed degree, 
without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: