Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Re: how to hide files, services and process in windows 2k/xp/2k3 box

From: "securitynews" <securitynews () wanadoo fr>
Date: Sun, 10 Jul 2005 16:09:33 +0200
Hi ,
some samples with source code and tips at :
http://www.rootkit.com/index.php

and http://www.osronline.com/
for windows driver development


Stephane.
----- Original Message ----- From: "fatb" <fatb () security zz ha cn> 
To: <full-disclosure () lists grok org uk>
Sent: Sunday, July 10, 2005 2:08 PM
Subject: [Full-disclosure] how to hide files,services and process in windows 2k/xp/2k3 box 



hi all guys

   I'm trying to write a rootkit to hide files,services and process
in windows 2k/xp/2k3 box ,and it would not be detected by icesword,rkdetector 

and so on.
Anybody could be kind enough to give me some tips or suggestions , thx alot! 


BTW: I heard that golden hxdef could be avoid from icesword,rkdetector
and any other anti-rootkit software ,anybody knew something about the golden hxdef ? 





--------------------------------------------------------------------------------



_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


--------------------------------------------------------------------------------



--
No virus found in this outgoing message.
Checked by AVG Anti-Virus.
Version: 7.0.323 / Virus Database: 267.8.11/45 - Release Date: 09/07/2005


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Previous By Date Next
Previous By Thread Next

Current thread: