Well in my quest to move my old tools and papers to my new blog here is another one from the old website. Two ways to detect rootkits, one of them doesn’t work anymore (assuming all rootkits hook the function used back then) the other one I don’t know haven’t tested it latley. Here are the readme’s and the source codes.


Timing Rootkits

Posted: October 28, 2008 in kd-team archive, papers
Using timing mechanisms to detect rootkits.