http://www.exploitx.com/141/rootkits-the-r00t-of-digital-evil/ Technology & Security Tips & Guides Wed, 07 Jan 2009 09:35:56 +0000 http://wordpress.org/?v=2.5.1 http://www.exploitx.com/141/rootkits-the-r00t-of-digital-evil/#comment-30 Matt Richard Thu, 01 Dec 2005 21:31:35 +0000 http://www.exploitx.com/141/rootkits-the-r00t-of-digital-evil/#comment-30 Interesting and thorough analysis. As far as detecting and preventing certain types of kernel level in-memory rootkits I came across a great paper from a couple of Stanford researchers that uses virtual machine technology to monitor to detect and prevent rootkits. The idea is to monitor the state of the kernel and mark certain memory pages as read only at the "virtual hardware" level. Interesting and thorough analysis. As far as detecting and preventing certain types of kernel level in-memory rootkits I came across a great paper from a couple of Stanford researchers that uses virtual machine technology to monitor to detect and prevent rootkits. The idea is to monitor the state of the kernel and mark certain memory pages as read only at the “virtual hardware” level.

]]>