Conclusion

Previous page
Table of content
Next page
 < Day Day Up > 

Generally speaking, the direct code-byte patch is one of the strongest methods for modifying program logic. Almost any program code or logic can be modified. Furthermore, the technique is somewhat difficult to detect at least with current rootkit-detection technology.

Code-byte patches offer an alternative way to implement many of the hooking strategies described in this book. If combined with other powerful techniques, such as direct hardware access and virtual-memory obfuscations, the direct code-byte patch can be used to develop a very deadly and hard-to-detect rootkit.

Overall, runtime patching is a staple technique for modern rootkit development.

     < Day Day Up > 

    Previous page
    Table of content
    Next page
    Rootkits(c) Subverting the Windows Kernel
    Rootkits: Subverting the Windows Kernel
    ISBN: 0321294319
    EAN: 2147483647
    Year: 2006
    Pages: 111
    Authors: Greg Hoglund, Jamie Butler
    BUY ON AMAZON
    Professional Java Native Interfaces with SWT/JFace (Programmer to Programmer)
    Network Security Architectures
    C++ GUI Programming with Qt 3
    Special Edition Using Crystal Reports 10
    Sap Bw: a Step By Step Guide for Bw 2.0
    Lean Six Sigma for Service : How to Use Lean Speed and Six Sigma Quality to Improve Services and Transactions
    flylib.com © 2008-2017.
    If you may any questions please contact us: flylib@qtcs.net
    Privacy policy