Rootkit Hook Analyzer


Rootkit Hook Analyzer, shown in Figure A-10, is a cross between a one-button scanner and a multi-page/ multi-function scanner. The two pages are Hooks and Modules. The Hooks tab is similar to the SSDT tab in Rootkit Unhooker, but Rootkit Hook Analyzer rarely finds the name of the module that planted the hook. The Modules tab is similar to the Hidden Drivers Detector in Rootkit Unhooker, but it does not detect hidden device drivers.

image from book
Figure A-10




Professional Rootkits
Professional Rootkits (Programmer to Programmer)
ISBN: 0470101547
EAN: 2147483647
Year: 2007
Pages: 229
Authors: Ric Vieler

Similar book on Amazon
Rootkits: Subverting the Windows Kernel
Rootkits: Subverting the Windows Kernel
A Guide to Kernel Exploitation: Attacking the Core
A Guide to Kernel Exploitation: Attacking the Core
Reversing: Secrets of Reverse Engineering
Reversing: Secrets of Reverse Engineering
Malware Analyst's Cookbook and DVD: Tools and Techniques for Fighting Malicious Code
Malware Analyst's Cookbook and DVD: Tools and Techniques for Fighting Malicious Code

flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net