WatchGuard Wire
Improve Your Security IQ
Free videos show rootkits in action and explain how rootkits work
Sure, you've
heard a lot about rootkits, but have you ever caught one in the act of subverting
your computer? Has anyone explained to you how they pull off their stealthy
crimes? Actually, someone has! Security training videos formerly
available only to LiveSecurity subscribers have now been released to the
public. As of today, two recent additions to the LiveSecurity Malware Analysis
video series are available on Google Video and YouTube:
- In "Malware
Analysis: Rootkits (Part 1)," Network Security Analyst Corey Nachreiner,
CISSP, defines what a rootkit is and does, using as an example Hacker Defender
-- a real rootkit commonly found in the wild. You'll see how a hacker configures
a rootkit, and what the results of rootkit activity can look like, both
from the attacker's view and the victim's view. Running time: 12:20
- In "Malware Analysis:
Rootkits (Part 2)," Nachreiner, aided by his Magic White Board, delves
into the technicalities of how rootkits work. He explains the concept of inline
function hooking, and shows how hooking can support all kinds of mischief.
Running time: 8:39.
The rootkit episodes of the Malware Analysis series were meant to end with
those two parts. But LiveSecurity subscribers
inundated us with hundreds of requests to produce a third video, covering
kernel mode rootkits and defense techniques against them. That video is being
released later today, exclusively to LiveSecurity subscribers. -- D.
Scott Pinzon,
CISSP
Copyright© 2010 WatchGuard® Technologies, Inc. You may copy and distribute this article freely in any medium as long as you copy and distribute the entire article without change and preserve this copyright statement and notice.
|
