How to write a RootKit?

If it doesn't relate to Debian, but you still want to share it, please do it here

How to write a RootKit?

Postby Dem » 2007-04-17 14:30

How can i write a rootkit?
Dem
 

Postby thamarok » 2007-04-17 15:45

For what use do you want to do a rootkit?
Asking for a full program (code) which can take full control of a system isn't something that happens everyday. Although I do know something in the sector of rootkits, I don't want to write code for you unless I know exactly what you want and if I can trust you. Do you have knowledge with C or C++?
thamarok
 

Postby Lost Dog » 2007-04-17 16:13

thamarok wrote:Although I do know something in the sector of rootkits, I don't want to write code for you unless I know exactly what you want and if I can trust you. Do you have knowledge with C or C++?


Make sure he does not work for Sony!
User avatar
Lost Dog
 
Posts: 250
Joined: 2006-08-11 21:54
Location: North of the Columbia River

Postby thamarok » 2007-04-17 20:13

Lost Dog wrote:
thamarok wrote:Although I do know something in the sector of rootkits, I don't want to write code for you unless I know exactly what you want and if I can trust you. Do you have knowledge with C or C++?


Make sure he does not work for Sony!
Maybe I missed something - Why?
thamarok
 

Postby plugwash » 2007-04-17 20:33

rootkits come in a variety of complexities ranging from those that simply replace standard tools (easy both to write and defeat) through those that replace standard libs (harder) to those that hide in the kernel (hardest).

the awkward thing in writing a rootkit is you not only have to cover up the stuff you want the rooted box for but you also have to cover up the rootkit itself.
plugwash
 
Posts: 2508
Joined: 2006-09-17 01:10

Postby Jackiebrown » 2007-04-17 22:02

thamarok wrote:
Lost Dog wrote:
thamarok wrote:Although I do know something in the sector of rootkits, I don't want to write code for you unless I know exactly what you want and if I can trust you. Do you have knowledge with C or C++?


Make sure he does not work for Sony!
Maybe I missed something - Why?


Sony has been in trouble in the past for putting rootkits on their cds

http://en.wikipedia.org/wiki/2005_Sony_ ... on_scandal
User avatar
Jackiebrown
 
Posts: 1276
Joined: 2007-01-02 04:46
Location: San Antonio, TX

Re: How to write a RootKit?

Postby Optional » 2007-04-18 03:48

Dem wrote:How can i write a rootkit?


http://www.amazon.com/Rootkits-Subverti ... 020&sr=8-1

Good book, I got it for $8 off of Amazon Marketplace. It focuses on Windows though, as it's the primary rootkit platform. ;)

Basically, just write and load your own kernel module/driver. Have it hook the necessary kernel-level functions to hide itself from userspace programs. Keep tampering with the host OS to a minimum.

There's plenty of informational freely available online (for educational purposes only, of course).
User avatar
Optional
 
Posts: 349
Joined: 2007-02-05 05:02

Postby DeanLinkous » 2007-04-18 03:52

Lost Dog wrote:Make sure he does not work for Sony!

He doesn't work for sony! But he has a interview next week and figures the job is his if he can figure this out. :D
User avatar
DeanLinkous
 
Posts: 1611
Joined: 2006-06-04 15:28

Postby dmn_clown » 2007-04-18 18:16

You could always dis-assemble the most famous rootkit of all... Windows Vista and see how they did it.

Oh wait, that is a trojan... n/m.
dmn_clown
 
Posts: 525
Joined: 2006-12-03 23:40


Return to Offtopic

Who is online

Users browsing this forum: No registered users and 2 guests

fashionable
cron