Analysis of Automated Rootkit Detection Methodologies: ANALYSIS, COMPARISON, AND EVALUATION OF THE EFFECTIVENESS OF ROOTKIT DETECTION METHODOLOGIES - Couverture souple
Synopsis
The focus of this study was to identify, analyze, compare, and evaluate the effectiveness of rootkit detection methodologies. Specifically, two methodologies were studied in depth. The first is the heuristic of statically analyzing kernel module binaries, which attempts to determine whether or not a software module's behavior is malicious, prior to passing it to the operating system. The second methodology analyzed in this paper, the Strider Ghostbuster framework, compares what a computer system believes to be true (i.e., what modules are visible to the OS) to the absolute “truth,” which is determined via low-level system programming. The expected results of this comparison should always be equal, unless a malicious tampering on the system is observed. After comparing the effectiveness of detection methodologies on a set of well-known (and publicly available) rootkits, including a very simple rootkit built by the author, the methodologies are compared and their effectiveness is evaluated.
Les informations fournies dans la section « Synopsis » peuvent faire référence à une autre édition de ce titre.
Présentation de l'éditeur
The focus of this study was to identify, analyze, compare, and evaluate the effectiveness of rootkit detection methodologies. Specifically, two methodologies were studied in depth. The first is the heuristic of statically analyzing kernel module binaries, which attempts to determine whether or not a software module's behavior is malicious, prior to passing it to the operating system. The second methodology analyzed in this paper, the Strider Ghostbuster framework, compares what a computer system believes to be true (i.e., what modules are visible to the OS) to the absolute “truth,” which is determined via low-level system programming. The expected results of this comparison should always be equal, unless a malicious tampering on the system is observed. After comparing the effectiveness of detection methodologies on a set of well-known (and publicly available) rootkits, including a very simple rootkit built by the author, the methodologies are compared and their effectiveness is evaluated.
Biographie de l'auteur
Eugene Chuvyrov is an independent software consultant in the beautiful Jacksonville, Florida. His specializes in enterprise and mobile software development.
Les informations fournies dans la section « A propos du livre » peuvent faire référence à une autre édition de ce titre.
Résultats de recherche pour Analysis of Automated Rootkit Detection Methodologies:...
Image fournie par le vendeur
Analysis of Automated Rootkit Detection Methodologies
Edité par
LAP LAMBERT Academic Publishing Jun 2011, 2011
ISBN 10 : 3844384839
ISBN 13 : 9783844384833
Neuf
Taschenbuch
Vendeur : BuchWeltWeit Ludwig Meier e.K., Bergisch Gladbach, Allemagne
Évaluation du vendeur 5 sur 5 étoiles
Taschenbuch. Etat : Neu. This item is printed on demand - it takes 3-4 days longer - Neuware -The focus of this study was to identify, analyze, compare, and evaluate the effectiveness of rootkit detection methodologies. Specifically, two methodologies were studied in depth. The first is the heuristic of statically analyzing kernel module binaries, which attempts to determine whether or not a software module's behavior is malicious, prior to passing it to the operating system. The second methodology analyzed in this paper, the Strider Ghostbuster framework, compares what a computer system believes to be true (i.e., what modules are visible to the OS) to the absolute truth, which is determined via low-level system programming. The expected results of this comparison should always be equal, unless a malicious tampering on the system is observed. After comparing the effectiveness of detection methodologies on a set of well-known (and publicly available) rootkits, including a very simple rootkit built by the author, the methodologies are compared and their effectiveness is evaluated. 116 pp. Englisch. N° de réf. du vendeur 9783844384833
Acheter neuf
EUR 49
Expédition à EUR 23
Expédition depuis Allemagne vers Etats-Unis
Expédition depuis Allemagne vers Etats-Unis
Quantité disponible : 2 disponible(s)
Image fournie par le vendeur
Analysis of Automated Rootkit Detection Methodologies
Edité par
LAP LAMBERT Academic Publishing, 2011
ISBN 10 : 3844384839
ISBN 13 : 9783844384833
Neuf
Couverture souple
Vendeur : moluna, Greven, Allemagne
Évaluation du vendeur 4 sur 5 étoiles
Etat : New. Dieser Artikel ist ein Print on Demand Artikel und wird nach Ihrer Bestellung fuer Sie gedruckt. Autor/Autorin: Chuvyrov EugeneEugene Chuvyrov is an independent software consultant in the beautiful Jacksonville, Florida. His specializes in enterprise and mobile software development.The focus of this study was to identify, analyze, compa. N° de réf. du vendeur 5476003
Acheter neuf
EUR 41,05
Expédition à EUR 48,99
Expédition depuis Allemagne vers Etats-Unis
Expédition depuis Allemagne vers Etats-Unis
Quantité disponible : Plus de 20 disponibles
Image fournie par le vendeur
Analysis of Automated Rootkit Detection Methodologies
Edité par
LAP LAMBERT Academic Publishing Jun 2011, 2011
ISBN 10 : 3844384839
ISBN 13 : 9783844384833
Neuf
Taschenbuch
Vendeur : buchversandmimpf2000, Emtmannsberg, BAYE, Allemagne
Évaluation du vendeur 5 sur 5 étoiles
Taschenbuch. Etat : Neu. This item is printed on demand - Print on Demand Titel. Neuware -The focus of this study was to identify, analyze, compare, and evaluate the effectiveness of rootkit detection methodologies. Specifically, two methodologies were studied in depth. The first is the heuristic of statically analyzing kernel module binaries, which attempts to determine whether or not a software module's behavior is malicious, prior to passing it to the operating system. The second methodology analyzed in this paper, the Strider Ghostbuster framework, compares what a computer system believes to be true (i.e., what modules are visible to the OS) to the absolute 'truth,' which is determined via low-level system programming. The expected results of this comparison should always be equal, unless a malicious tampering on the system is observed. After comparing the effectiveness of detection methodologies on a set of well-known (and publicly available) rootkits, including a very simple rootkit built by the author, the methodologies are compared and their effectiveness is evaluated.VDM Verlag, Dudweiler Landstraße 99, 66123 Saarbrücken 116 pp. Englisch. N° de réf. du vendeur 9783844384833
Acheter neuf
EUR 49
Expédition à EUR 60
Expédition depuis Allemagne vers Etats-Unis
Expédition depuis Allemagne vers Etats-Unis
Quantité disponible : 1 disponible(s)
Image fournie par le vendeur
Analysis of Automated Rootkit Detection Methodologies : ANALYSIS, COMPARISON, AND EVALUATION OF THE EFFECTIVENESS OF ROOTKIT DETECTION METHODOLOGIES
Edité par
LAP LAMBERT Academic Publishing, 2011
ISBN 10 : 3844384839
ISBN 13 : 9783844384833
Neuf
Taschenbuch
Vendeur : AHA-BUCH GmbH, Einbeck, Allemagne
Évaluation du vendeur 5 sur 5 étoiles
Taschenbuch. Etat : Neu. nach der Bestellung gedruckt Neuware - Printed after ordering - The focus of this study was to identify, analyze, compare, and evaluate the effectiveness of rootkit detection methodologies. Specifically, two methodologies were studied in depth. The first is the heuristic of statically analyzing kernel module binaries, which attempts to determine whether or not a software module's behavior is malicious, prior to passing it to the operating system. The second methodology analyzed in this paper, the Strider Ghostbuster framework, compares what a computer system believes to be true (i.e., what modules are visible to the OS) to the absolute truth, which is determined via low-level system programming. The expected results of this comparison should always be equal, unless a malicious tampering on the system is observed. After comparing the effectiveness of detection methodologies on a set of well-known (and publicly available) rootkits, including a very simple rootkit built by the author, the methodologies are compared and their effectiveness is evaluated. N° de réf. du vendeur 9783844384833
Acheter neuf
EUR 49
Expédition à EUR 60,96
Expédition depuis Allemagne vers Etats-Unis
Expédition depuis Allemagne vers Etats-Unis
Quantité disponible : 1 disponible(s)
Image fournie par le vendeur
Analysis of Automated Rootkit Detection Methodologies | ANALYSIS, COMPARISON, AND EVALUATION OF THE EFFECTIVENESS OF ROOTKIT DETECTION METHODOLOGIES
Edité par
LAP LAMBERT Academic Publishing, 2011
ISBN 10 : 3844384839
ISBN 13 : 9783844384833
Neuf
Taschenbuch
Vendeur : preigu, Osnabrück, Allemagne
Évaluation du vendeur 5 sur 5 étoiles
Taschenbuch. Etat : Neu. Analysis of Automated Rootkit Detection Methodologies | ANALYSIS, COMPARISON, AND EVALUATION OF THE EFFECTIVENESS OF ROOTKIT DETECTION METHODOLOGIES | Eugene Chuvyrov | Taschenbuch | 116 S. | Englisch | 2011 | LAP LAMBERT Academic Publishing | EAN 9783844384833 | Verantwortliche Person für die EU: BoD - Books on Demand, In de Tarpen 42, 22848 Norderstedt, info[at]bod[dot]de | Anbieter: preigu. N° de réf. du vendeur 106943194
Acheter neuf
EUR 43,30
Expédition à EUR 70
Expédition depuis Allemagne vers Etats-Unis
Expédition depuis Allemagne vers Etats-Unis
Quantité disponible : 5 disponible(s)
Image d'archives
Analysis of Automated Rootkit Detection Methodologies : ANALYSIS, COMPARISON, AND EVALUATION OF THE EFFECTIVENESS OF ROOTKIT DETECTION METHODOLOGIES
Edité par
LAP LAMBERT Academic Publishing, 2011
ISBN 10 : 3844384839
ISBN 13 : 9783844384833
Ancien ou d'occasion
Couverture souple
Vendeur : Buchpark, Trebbin, Allemagne
Évaluation du vendeur 5 sur 5 étoiles
Etat : Sehr gut. Zustand: Sehr gut | Sprache: Englisch | Produktart: Bücher | The focus of this study was to identify, analyze, compare, and evaluate the effectiveness of rootkit detection methodologies. Specifically, two methodologies were studied in depth. The first is the heuristic of statically analyzing kernel module binaries, which attempts to determine whether or not a software module's behavior is malicious, prior to passing it to the operating system. The second methodology analyzed in this paper, the Strider Ghostbuster framework, compares what a computer system believes to be true (i.e., what modules are visible to the OS) to the absolute ¿truth,¿ which is determined via low-level system programming. The expected results of this comparison should always be equal, unless a malicious tampering on the system is observed. After comparing the effectiveness of detection methodologies on a set of well-known (and publicly available) rootkits, including a very simple rootkit built by the author, the methodologies are compared and their effectiveness is evaluated. N° de réf. du vendeur 10805203/2
Acheter D'occasion
EUR 29,90
Expédition à EUR 105
Expédition depuis Allemagne vers Etats-Unis
Expédition depuis Allemagne vers Etats-Unis
Quantité disponible : 1 disponible(s)