| 基于Inline Hook的Windows Rootkit技术研究 |
| |
| 引用本文: | 张文川,黄元亮.基于Inline Hook的Windows Rootkit技术研究[J].世界科技研究与发展,2010,32(1):49-51. |
| |
| 作者姓名: | 张文川 黄元亮 |
| |
| 作者单位: | 暨南大学珠海学院电气研究所,珠海,519070 |
| |
| 摘 要: | Rootkit是恶意软件用于隐藏自身及其他特定资源和活动的程序集合,深入研究RootKit技术,对保护敏感信息,减少网络破坏损失有重要意义.该文分析了基于Inline Hook的Windows Rootkit技术原理,并结合实例分析了Inline Hook技术的实现过程,展望了Rootkit隐藏技术未来的发展趋势.
|
| 关 键 词: | rootkit Inline Hook 后门 Detour补丁 |
Research on Windows Rootkit Technology Based on Inline Hook |
| |
| ZHANG Wenchuan,HUANG Yuanliang.Research on Windows Rootkit Technology Based on Inline Hook[J].World Sci-tech R & D,2010,32(1):49-51. |
| |
| Authors: | ZHANG Wenchuan HUANG Yuanliang |
| |
| Institution: | ( Electric Automatization Institute, Jinan University, Zhuhai 519070 ) |
| |
| Abstract: | Rootkit is a program set which malicious software use to conceal itself or other specific resources and actions.Conducting an indepth study on rootkit technique is significant,it can reduce damage,protect important information.This paper analyzed the windows rootkit based on Inline Hook technology,and reversed an real-world malicious software.The future development directions are discussed too. |
| |
| Keywords: | rootkit Inline Hook rootkit inline hook backdoor detour patching |
| 本文献已被 维普 万方数据 等数据库收录! |
|
