RAIDE Rootkit Elimination Tool Hits Beta
Spurred on by the ongoing cat-and-mouse game between malicious hackers and existing anti-rootkit scanners, a pair of security researchers have teamed up on a new tool that promises a solution to the threat from stealthy malware.
Rootkits are used to modify the flow of the kernel to hide the presence of an attack or compromise on a machine. It gives a hacker remote user access to a compromised system while avoiding detection from anti-virus scanners.
RAIDE offers several unique features that cannot be found in other anti-rootkit tools. Existing anti-rootkit scanners like BlackLight and RootkitRevealer look for registry and file system API discrepancies that may indicate the presence of a user-mode or kernel-mode rootkit, but weaknesses in that approach have been proven.
Read the full article HERE.
Rootkits are used to modify the flow of the kernel to hide the presence of an attack or compromise on a machine. It gives a hacker remote user access to a compromised system while avoiding detection from anti-virus scanners.
RAIDE offers several unique features that cannot be found in other anti-rootkit tools. Existing anti-rootkit scanners like BlackLight and RootkitRevealer look for registry and file system API discrepancies that may indicate the presence of a user-mode or kernel-mode rootkit, but weaknesses in that approach have been proven.
Read the full article HERE.
posted by vanish at 9:42 AM
0 Comments:
Post a Comment
<< Home