Просмотр полной версии : No harddrive for rootkits!

19.02.2008, 08:33
short description: A driver that can store executable code in a FLASH or EEPROM and submit this code to be executed from the video processor in order to patch kernel memory.
This driver combines several techniques to 'raise the bar' on rootkits. The driver stores the payload off-disk and in EEPROM, and also uses a secondary processor to perform the memory patching operations aka DKOM


Does that mean that Modems, routers and nic cards are also a target?

19.02.2008, 11:55
Your BIOS flash memory can be a target as well. :) Yes, there are proofs of concept demonstrating that a malicious code can be written virtually anywhere if some rewritable memory is available. :)

21.02.2008, 12:32
Are protected Flash and Protected EEPROMs immune from these types of attacks?

Добавлено через 3 часа 48 минут


I have determined that there only two ways to effectively have a clean computer.

1. After buy your computer, never turn it on.
2. If you turn it on, Sanitize by placing inside the microwave, set timer for not longer than 2 minutes. Be careful when removing from the microwave as the contents may be HOT! :crazy:

22.02.2008, 04:48
Would updating to current or new firmware, on bios router modem, solve this type of issue?