Eugene Chuvyrov

Analysis of Automated Rootkit Detection Methodologies

ANALYSIS, COMPARISON, AND EVALUATION OF THE EFFECTIVENESS OF ROOTKIT DETECTION METHODOLOGIES

Buch

The focus of this study was to identify, analyze, compare, and evaluate the effectiveness of rootkit detection methodologies. Specifically, two methodologies were studied in depth. The first is the heuristic of statically analyzing kernel module binaries, which attempts to determine whether or not a software module's behavior is malicious, prior to passing it to the operating system. The second methodology analyzed in this paper, the Strider Ghostbuster framework, compares what a computer system believes to be true (i.e., what modules are visible to the OS) to the absolute truth, which is determined via low-level system programm… Mehr

CHF 66.00

Preise inkl. MwSt. und Versandkosten (Portofrei ab CHF 40.00)

Versandfertig innerhalb 1-3 Werktagen

V105: Folgt in ca. 15 Arbeitstagen

Produktdetails

ISBN: 978-3-8443-8483-3
EAN: 9783844384833
Produktnummer: 37802831
Verlag: LAP Lambert Academic Publishing
Sprache: Englisch
Erscheinungsjahr: 2011
Seitenangabe: 116 S.
Masse: H22.0 cm x B15.0 cm x D0.7 cm 191 g
Abbildungen: Paperback
Gewicht: 191

Über den Autor

Eugene Chuvyrov is an independent software consultant in the beautiful Jacksonville, Florida. His specializes in enterprise and mobile software development.