[share_ebook] Rootkits: What they are, and how to find them
Category: Tutorial
Download Babylon Translation Software for Free!
Posted on 2012-01-06, by naveennisha.
Description
English | 640x360 | H264 | 29.97fps 778kbps | AAC 128kbps | 3.64GB
Rootkits are a class of malware which are dedicated to hiding the attacker’s presence on a compromised system. This class will focus on understanding how rootkits work, and what tools can be used to help find them.
This will be a very hands-on class where we talk about specific techniques which rootkits use, and then do labs where we show how a proof of concept rootkit is able to hide things from a defender. Example techniques include
•Trojaned binaries
•Inline hooks
•Import Address Table (IAT) hooking
•System Call Table/System Service Descriptor Table (SSDT) hooking
•Interrupt Descriptor Table (IDT) hooking
•Direct Kernel Object Manipulation (DKOM)
•Kernel Object Hooking (KOH)
•IO Request Packet (IRP) filtering
•Hiding files/processes/open ports
•Compromising the Master Boot Record (MBR) to install a “bootkit”
The class will help the student learn which tools to use to look for rootkits on Windows systems, how to evaluate the breadth of a tool’s detection capabilities, and how to interpret tool results.
This class is structured so that students are given a homework to detect rootkits *before* they have taken the class. This homework is given in the context of the following scenario:
“You, being the only ‘security person’ in the area, have been called in to
examine a running Windows server because "it's acting funny." They don't
care that you like Mac/Linux/BSD/Plan9 better, you need to look at it! You
are solemnly informed that this is system is mission critical and can only
be rebooted if absolutely necessary. You must investigate whether any sort
of compromise has taken place on the system, with minimal impact to the
mission. What do you do? What DO you DO?”
The homework is then for the student to use any means at their disposal to write up answers to the following questions: “What malicious changes were made to the system?”, “What tools did you use to detect the changes?”, “How can you remove the changes?”. The students’ answers are then anonymized and shared with the rest of the class afterwards, so that they can see how others approached the problem, and learn from their techniques. The anonymization of the homework before distribution is important so that students know that even though they don’t know, and aren’t expected to know, anything about the area yet, their entry will not be judged by other students.
More info:
_http://opensecuritytraining.info/Rootkits.html
filesonic
http://www.filesonic.com/file/boYkhVb/Rootkits.part01.rar
http://www.filesonic.com/file/Vqtyya7/Rootkits.part02.rar
http://www.filesonic.com/file/M1Dkk84/Rootkits.part05.rar
http://www.filesonic.com/file/RvDFHe6/Rootkits.part06.rar
http://www.filesonic.com/file/oQ94GTt/Rootkits.part04.rar
http://www.filesonic.com/file/OHdOgtD/Rootkits.part07.rar
http://www.filesonic.com/file/IDrPXnj/Rootkits.part03.rar
http://www.filesonic.com/file/T7wnp0M/Rootkits.part09.rar
http://www.filesonic.com/file/S9jcmvH/Rootkits.part08.rar
filejungle
http://www.filejungle.com/f/B78nfw/Rootkits.part01.rar
http://www.filejungle.com/f/aGWuwv/Rootkits.part02.rar
http://www.filejungle.com/f/mqtZSx/Rootkits.part03.rar
http://www.filejungle.com/f/qR4UCu/Rootkits.part04.rar
http://www.filejungle.com/f/nWaR4q/Rootkits.part05.rar
http://www.filejungle.com/f/uvDXe6/Rootkits.part06.rar
http://www.filejungle.com/f/AQrqCf/Rootkits.part07.rar
http://www.filejungle.com/f/ktK9g2/Rootkits.part08.rar
http://www.filejungle.com/f/qa2jcz/Rootkits.part09.rar
ul.to
http://ul.to/rq7jncaj/Rootkits.part03.rar
http://ul.to/bvmtxxo1/Rootkits.part07.rar
http://ul.to/uheo13zu/Rootkits.part04.rar
http://ul.to/lmufpfiv/Rootkits.part06.rar
http://ul.to/bs97ufda/Rootkits.part09.rar
http://ul.to/eatsasqn/Rootkits.part05.rar
http://ul.to/nihqwv3d/Rootkits.part02.rar
http://ul.to/uo870mpi/Rootkits.part01.rar
http://ul.to/782uqkdz/Rootkits.part08.rar
[Directly Download] [share_ebook] Rootkits: What they are, and how to find them!
Free register and download UseNet downloader, then you can free download from UseNet. You can download 300GB ebooks, audiobooks and anything for FREE.Free Download " Rootkits: What they are, and how to find them" from Usenet!
Disclaimer:
Contents of this information are indexed from the Internet and not censored. All actions are under your responsibility. Send email to admin@ebookee.com to report links to illegal contents, we'll remove them immediately.
Search More...
[share_ebook] Rootkits: What they are, and how to find themLinks
How to download:Free register to download UseNet downloader and install, then search book title and start downloading. You can DOWNLOAD 300GB for free! Register and Download NOW!
Free Download " Rootkits: What they are, and how to find them" from UseNet!
Download Link 2
Need password?
Try RAR Password Recovery.
Can't Download?
Please search mirrors if you can't find download links for "[share_ebook] Rootkits: What they are, and how to find them" in "Description" and someone else may update the links. Check the comments when back to find any updates.
Search Mirrors
Maybe some mirror pages will be helpful, search this book at top of this page or click here to find more info.
Related Books
- Ebooks list page : 16816
- [share_ebook] [MULTI] Rootkits What they are, and how to find them
- Sentiment Indicators - Renko, Price Break, Kagi, Point and Figure: What They Are and How to Use Them to Trade
- [share_ebook] Voluntary Carbon Markets: An International Business Guide to What They Are and How They Work
- Voluntary Carbon Markets: An International Business Guide to What They Are and How They Work
- [share_ebook] Successful Houses And How To Build Them
- [share_ebook] The Mechanics of the Derivatives Markets: What They Are and How They Function - Oil Market Report
- [share_ebook] The Mechanics of the Derivatives Markets: What They Are and How They Function - Oil Market Report
- [share_ebook] The Jungle Effect: A Doctor Discovers the Healthiest Diets from Around the World--Why They Work and How to Bring Them Home
- Sentiment Indicators - Renko, Price Break, Kagi, Point and Figure: What They Are and
- [share_ebook] The Jungle Effect: A Doctor Discovers the Healthiest Diets from Around the World--Why They Work and How to Bring Them Home
- Outstanding Women Athletes: Who They Are and How They Influenced Sports In America, Second Edition
- [share_ebook] Common Mistakes at Proficiency...and How to Avoid Them
- [share_ebook] Common Mistakes at PET...and How to Avoid Them
- [share_ebook] 101 Project Management Problems and How to Solve Them: Practical Advice for Handling Real-World Project Challenges
- [share_ebook] 101 Project Management Problems and How to Solve Them: Practical Advice for Handling Real-World Project Challenges
- [share_ebook] Common Mistakes at Proficiency...and How to Avoid Them (Cambridge Books for Cambridge Exams)
- [share_ebook] Lean Manufacturing: Tools, Techniques, and How to Use Them
- The Jungle Effect: A Doctor Discovers the Healthiest Diets from Around the World -Why They Work and How to Bring Them Home
- The Jungle Effect: A Doctor Discovers the Healthiest Diets from Around the World--Why They Work and How to Bring Them Home
- Turn Left at Orion: A Hundred Night Sky Objects to See in a Small Telescope--and How to Find Them
Comments
Add Your Comments
- Download links and password may be in the description section, read description carefully!
- Do a search to find mirrors if no download links or dead links.
