Mechanism and implementation of Rootkit attack and defense

Mechanism and implementation of Rootkit attack and defense

Rootkit is a set of malicious codes that can attack the system kernel and achieve deep hiding,which has posed serious threats to cyber security.Firstly,the basic features of Rootkit/Bootkit were introduced,and the characteristics of Rootkit attacks in user mode and kernel mode were compared and anal...

Full description

Saved in:
Bibliographic Details
Main Authors: Fujuan LI, Qun WANG
Format: Article
Language:zho
Published: Beijing Xintong Media Co., Ltd 2018-12-01
Series:Dianxin kexue
Subjects:
network attack and defense
malware
Rootkit
hooking attack
network security
Online Access:http://www.telecomsci.com/zh/article/doi/10.11959/j.issn.1000-0801.2018298/
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:Rootkit is a set of malicious codes that can attack the system kernel and achieve deep hiding,which has posed serious threats to cyber security.Firstly,the basic features of Rootkit/Bootkit were introduced,and the characteristics of Rootkit attacks in user mode and kernel mode were compared and analyzed.Thereafter,the implementation principles and working mechanisms of Hook,DKOM and virtualization technologies involved in Rootkit attacks were emphatically analyzed.Combined with the specific attack behaviors,the main detection methods and defense techniques for Rootkit attacks were discussed at the end.
ISSN:1000-0801

Similar Items