Skip to main content
Journal ArticleOPEN ACCESS

Timely rootkit detection during live response

IFIP International Federation for Information Processing (2008) 285 139-148
DOI: 10.1007/978-0-387-84927-0_12
4Citations
Citations of this article
16Readers
Mendeley users who have this article in their library.

This article is free to access.

Abstract

This paper describes a non-intrusive rootkit detection tool designed to support forensic investigations that involve the live analysis of computer systems. The tool, which does not require pre-installation, correlates outputs from multiple system data gathering utilities. Test results indicate that the tool successfully detects several well-known rootkits, including Hacker Defender, AFX, Vanquish, FU and FUto. © 2008 International Federation for Information Processing.

Author supplied keywords

Cite

CITATION STYLE

APA

Molina, D., Zimmerman, M., Roberts, G., Eaddie, M., & Peterson, G. (2008). Timely rootkit detection during live response. IFIP International Federation for Information Processing, 285, 139–148. https://doi.org/10.1007/978-0-387-84927-0_12

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free