Rootkits
Rootkits Rootkits
Checking For RootkitsThe most effective way to check for a rootkit is toboot the system from a trusted, clean OS source(live CD) and scan the system.The rootkit isn't active at that point and can bedetected either through its own files being foundor utilities and drivers being compared to cleancopies. If they differ, then they are most likelycompromised.RootkitsJuly 2009Slide 8
- Page 4 and 5: Rootkits vs VirusesA rootkit will n
- Page 7: Checking For RootkitsFor example, t
- Page 11 and 12: Detector - rkhunterRootkit Hunterht
- Page 13 and 14: Detector - OSSECOSSEChttp://www.oss
- Page 15: RemovalWhat do you do if a checker
- Page 21: Thank YouThank you for your time an
Checking For <strong>Rootkits</strong>The most effective way to check for a rootkit is toboot the system from a trusted, clean OS source(live CD) and scan the system.The rootkit isn't active at that point and can bedetected either through its own files being foundor utilities and drivers being compared to cleancopies. If they differ, then they are most likelycompromised.<strong>Rootkits</strong>July 2009Slide 8
Change language