What is the best method to learn of latest rootkits

#19392 by Victor43
Thu May 23, 2013 1:43 pm

Hello everyone.

I was hoping anyone could give me advice on how to go about learning the behaviors of the latest rootkit threats ? I would like to learn of their hiding techniques and techniques they use to filter data out to their C&C servers ?

Any advice would be greatly appreciated.

Victor

Username

Victor43

Posts

Joined

Thu Dec 15, 2011 7:34 am

Location

Canada

Re: What is the best method to learn of latest rootkits

#19393 by EP_X0FF
Thu May 23, 2013 1:54 pm

There is no such thing as "latest" rootkits. All rootkits ITW are 2005-2006 year technology level. I would recommend start from something really old, like Haxdef, next take Haxdoor, next Rustock, next Sinowal, next TDSS, next ZeroAccess. That is all.

Ring0 - the source of inspiration

Username

EP_X0FF

Rank

Global Moderator

Posts

4947

Joined

Sun Mar 07, 2010 5:35 am

Location

Russian Federation

Contact

Re: What is the best method to learn of latest rootkits

#19394 by Victor43
Thu May 23, 2013 2:57 pm

Thank you EP_X0FF. I will follow your advice and thanks.

Username

Victor43

Posts

Joined

Thu Dec 15, 2011 7:34 am

Location

Canada

Page 1 of 1
3 posts