Rkdetector V2.0

Articles Metasploit Framework Windows Tutorial Remote Desktop Connection Windows Processes That May Be Dangerous How-To use NetCat a Tutorial Common Linux Commands Common Ports Netcat Commands HTTP Response Codes War-Google Hack Terms Wardriving Avoiding Social Engineering and Phishing Attacks Intrusion Detection on Linux Linux Intrusion Detection Penetration Testing Guide Penetration Testing Tools Social Engineering Fundamentals, Part I: Hacker Tactics Social engineering (computer security) The Psychology of Social Engineering The Archives General GSO GovernmentSecurity.org News & Suggestions In The News Open Topic General Security Information Trash Can Exploit & Vulnerability Mailing List Archives Trial Member Forum Product and Program Reviews GSO Tutorials System Security Windows Systems Beginners Section Linux & Unix Systems File Downloads Exploit Research & Discussion Trojan & Virus Errata Networking Security / Firewall / IDS / VPN / Routers System Hardening E-Mail Security Wifi Security Trial Member Uploads Upload discovered Trojans & Mal ware GSO Programming Section C , C++ , VC++ Visual Basic .NET Perl /CGI Java/Javascript PHP/XML/ASP/HTML Assembly + Other The Cork Board Network Security Consultant Directory Network Security Jobs The Archives Encryption Information General Network Security Internet Anonymity HTTP Protocol Security Linux Security MS IIS Information Exploit Articles Programming / Tool Design GSO Software Projects Public Downloads Microsoft Security Questions and Papers		Help - Search - Member List - Calendar Full Version: Rkdetector V2.0 GovernmentSecurity.org > General GSO > General Security Information ch0pper Jun 29 2005, 02:57 PM RKDetector v2.0 - Security Analyzer & Rootkit Removal Runtime Forensic Analysis NTFS & Fat32 Driver - IAT analyzer & Restorer - Registry analyzer - Ads Scanner - Hidden files Scanner Data recovery - Offline SAM Explorer - Forensic Tools - Rootkit Eliminator - services Monitor http://www.rkdetector.com/screenshots.html BETA coming soon to you !!!! Bombers Jul 2 2005, 03:47 AM Who is making this crap... RootKit are worthless with these things! ch0pper Jul 2 2005, 07:23 AM rookit ares not worthless, you can always get around these type ! see http://hxdef.czweb.org/ Anti-detection service even icesword! seen my post about it! i made a hacker defender bot in c++ that got around all know rootkit detection even icesword! learn to program! its not to hard to work out! all source has been posted for! you! GSecur Jul 2 2005, 10:46 AM It is all part of the cycle. One group becomes better, and then the next group plays catch up. So on and so forth. tibbar Jul 2 2005, 11:05 AM well thanks to Joanna Rutkowska's good work, the security community is currently a step ahead of the rootkit developers. Only those rootkits that specifically target a rootkit detector currently stay hidden, and that's only until the next revision of the rootkit detector. Hxdef golden edition for example, is not doing anything particularly clever, and if it were open source, it would be detected very quickly. I understand that hf's current viewpoint is to stay closed source and make the game a bit harder for the detectors. Fu is the only rootkit which is creating problems for the detectors, but i think even this is now beaten. It will be a little while before the rootkits play catchup, i suspect this will be through lower level hooks, which sit a level below the detectors. but that will not be an easy game to play, it involves working with raw ntfs, and possibly at a preboot bios level... time will tell i guess. This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here. Invision Power Board © 2001-2005 Invision Power Services, Inc.