Analysis of Automated Rootkit Detection Methodologies: ANALYSIS, COMPARISON, AND EVALUATION OF THE EFFECTIVENESS OF ROOTKIT DETECTION METHODOLOGIES - Softcover
Synopsis
The focus of this study was to identify, analyze, compare, and evaluate the effectiveness of rootkit detection methodologies. Specifically, two methodologies were studied in depth. The first is the heuristic of statically analyzing kernel module binaries, which attempts to determine whether or not a software module's behavior is malicious, prior to passing it to the operating system. The second methodology analyzed in this paper, the Strider Ghostbuster framework, compares what a computer system believes to be true (i.e., what modules are visible to the OS) to the absolute “truth,” which is determined via low-level system programming. The expected results of this comparison should always be equal, unless a malicious tampering on the system is observed. After comparing the effectiveness of detection methodologies on a set of well-known (and publicly available) rootkits, including a very simple rootkit built by the author, the methodologies are compared and their effectiveness is evaluated.
"synopsis" may belong to another edition of this title.
About the Author
Eugene Chuvyrov is an independent software consultant in the beautiful Jacksonville, Florida. His specializes in enterprise and mobile software development.
"About this title" may belong to another edition of this title.
Search results for Analysis of Automated Rootkit Detection Methodologies:...
Seller Image
Analysis of Automated Rootkit Detection Methodologies
Published by
LAP LAMBERT Academic Publishing Jun 2011, 2011
ISBN 10: 3844384839
ISBN 13: 9783844384833
New
Taschenbuch
Seller: BuchWeltWeit Ludwig Meier e.K., Bergisch Gladbach, Germany
Seller rating 5 out of 5 stars
Taschenbuch. Condition: Neu. This item is printed on demand - it takes 3-4 days longer - Neuware -The focus of this study was to identify, analyze, compare, and evaluate the effectiveness of rootkit detection methodologies. Specifically, two methodologies were studied in depth. The first is the heuristic of statically analyzing kernel module binaries, which attempts to determine whether or not a software module's behavior is malicious, prior to passing it to the operating system. The second methodology analyzed in this paper, the Strider Ghostbuster framework, compares what a computer system believes to be true (i.e., what modules are visible to the OS) to the absolute truth, which is determined via low-level system programming. The expected results of this comparison should always be equal, unless a malicious tampering on the system is observed. After comparing the effectiveness of detection methodologies on a set of well-known (and publicly available) rootkits, including a very simple rootkit built by the author, the methodologies are compared and their effectiveness is evaluated. 116 pp. Englisch. Seller Inventory # 9783844384833
Buy New
US$ 58.66
US$ 26.73 shipping
Ships from Germany to U.S.A.
Ships from Germany to U.S.A.
Quantity: 2 available
Seller Image
Analysis of Automated Rootkit Detection Methodologies
Published by
LAP LAMBERT Academic Publishing, 2011
ISBN 10: 3844384839
ISBN 13: 9783844384833
New
Softcover
Seller: moluna, Greven, Germany
Seller rating 4 out of 5 stars
Condition: New. Dieser Artikel ist ein Print on Demand Artikel und wird nach Ihrer Bestellung fuer Sie gedruckt. Autor/Autorin: Chuvyrov EugeneEugene Chuvyrov is an independent software consultant in the beautiful Jacksonville, Florida. His specializes in enterprise and mobile software development.The focus of this study was to identify, analyze, compa. Seller Inventory # 5476003
Buy New
US$ 49.14
US$ 56.94 shipping
Ships from Germany to U.S.A.
Ships from Germany to U.S.A.
Quantity: Over 20 available
Seller Image
Analysis of Automated Rootkit Detection Methodologies
Published by
LAP LAMBERT Academic Publishing Jun 2011, 2011
ISBN 10: 3844384839
ISBN 13: 9783844384833
New
Taschenbuch
Seller: buchversandmimpf2000, Emtmannsberg, BAYE, Germany
Seller rating 5 out of 5 stars
Taschenbuch. Condition: Neu. This item is printed on demand - Print on Demand Titel. Neuware -The focus of this study was to identify, analyze, compare, and evaluate the effectiveness of rootkit detection methodologies. Specifically, two methodologies were studied in depth. The first is the heuristic of statically analyzing kernel module binaries, which attempts to determine whether or not a software module's behavior is malicious, prior to passing it to the operating system. The second methodology analyzed in this paper, the Strider Ghostbuster framework, compares what a computer system believes to be true (i.e., what modules are visible to the OS) to the absolute 'truth,' which is determined via low-level system programming. The expected results of this comparison should always be equal, unless a malicious tampering on the system is observed. After comparing the effectiveness of detection methodologies on a set of well-known (and publicly available) rootkits, including a very simple rootkit built by the author, the methodologies are compared and their effectiveness is evaluated.VDM Verlag, Dudweiler Landstraße 99, 66123 Saarbrücken 116 pp. Englisch. Seller Inventory # 9783844384833
Buy New
US$ 58.66
US$ 69.74 shipping
Ships from Germany to U.S.A.
Ships from Germany to U.S.A.
Quantity: 1 available
Seller Image
Analysis of Automated Rootkit Detection Methodologies : ANALYSIS, COMPARISON, AND EVALUATION OF THE EFFECTIVENESS OF ROOTKIT DETECTION METHODOLOGIES
Published by
LAP LAMBERT Academic Publishing, 2011
ISBN 10: 3844384839
ISBN 13: 9783844384833
New
Taschenbuch
Seller: AHA-BUCH GmbH, Einbeck, Germany
Seller rating 5 out of 5 stars
Taschenbuch. Condition: Neu. nach der Bestellung gedruckt Neuware - Printed after ordering - The focus of this study was to identify, analyze, compare, and evaluate the effectiveness of rootkit detection methodologies. Specifically, two methodologies were studied in depth. The first is the heuristic of statically analyzing kernel module binaries, which attempts to determine whether or not a software module's behavior is malicious, prior to passing it to the operating system. The second methodology analyzed in this paper, the Strider Ghostbuster framework, compares what a computer system believes to be true (i.e., what modules are visible to the OS) to the absolute truth, which is determined via low-level system programming. The expected results of this comparison should always be equal, unless a malicious tampering on the system is observed. After comparing the effectiveness of detection methodologies on a set of well-known (and publicly available) rootkits, including a very simple rootkit built by the author, the methodologies are compared and their effectiveness is evaluated. Seller Inventory # 9783844384833
Buy New
US$ 58.66
US$ 70.86 shipping
Ships from Germany to U.S.A.
Ships from Germany to U.S.A.
Quantity: 1 available
Seller Image
Analysis of Automated Rootkit Detection Methodologies | ANALYSIS, COMPARISON, AND EVALUATION OF THE EFFECTIVENESS OF ROOTKIT DETECTION METHODOLOGIES
Published by
LAP LAMBERT Academic Publishing, 2011
ISBN 10: 3844384839
ISBN 13: 9783844384833
New
Taschenbuch
Seller: preigu, Osnabrück, Germany
Seller rating 5 out of 5 stars
Taschenbuch. Condition: Neu. Analysis of Automated Rootkit Detection Methodologies | ANALYSIS, COMPARISON, AND EVALUATION OF THE EFFECTIVENESS OF ROOTKIT DETECTION METHODOLOGIES | Eugene Chuvyrov | Taschenbuch | 116 S. | Englisch | 2011 | LAP LAMBERT Academic Publishing | EAN 9783844384833 | Verantwortliche Person für die EU: BoD - Books on Demand, In de Tarpen 42, 22848 Norderstedt, info[at]bod[dot]de | Anbieter: preigu. Seller Inventory # 106943194
Buy New
US$ 51.84
US$ 81.37 shipping
Ships from Germany to U.S.A.
Ships from Germany to U.S.A.
Quantity: 5 available
Stock Image
Analysis of Automated Rootkit Detection Methodologies : ANALYSIS, COMPARISON, AND EVALUATION OF THE EFFECTIVENESS OF ROOTKIT DETECTION METHODOLOGIES
Published by
LAP LAMBERT Academic Publishing, 2011
ISBN 10: 3844384839
ISBN 13: 9783844384833
Used
Softcover
Seller: Buchpark, Trebbin, Germany
Seller rating 5 out of 5 stars
Condition: Sehr gut. Zustand: Sehr gut | Sprache: Englisch | Produktart: Bücher | The focus of this study was to identify, analyze, compare, and evaluate the effectiveness of rootkit detection methodologies. Specifically, two methodologies were studied in depth. The first is the heuristic of statically analyzing kernel module binaries, which attempts to determine whether or not a software module's behavior is malicious, prior to passing it to the operating system. The second methodology analyzed in this paper, the Strider Ghostbuster framework, compares what a computer system believes to be true (i.e., what modules are visible to the OS) to the absolute ¿truth,¿ which is determined via low-level system programming. The expected results of this comparison should always be equal, unless a malicious tampering on the system is observed. After comparing the effectiveness of detection methodologies on a set of well-known (and publicly available) rootkits, including a very simple rootkit built by the author, the methodologies are compared and their effectiveness is evaluated. Seller Inventory # 10805203/2
Buy Used
US$ 35.80
US$ 122.05 shipping
Ships from Germany to U.S.A.
Ships from Germany to U.S.A.
Quantity: 1 available