Re: 90% of Linux Systems Have Never Been Infected ...

From: <captgoodnight@acsalaska.net>
Date: Thu Jul 29 2004 - 00:37:36 AKDT

On Thursday 29 July 2004 12:21 am, Matthew Schumacher wrote:
> Matthew Schumacher wrote:
> > So how would you install a kernel level root kit without kicking the
> > machine? And how would you ensure that the hacked kernel would be
> > started on future reboots if changes to the kernel file could be
> > detected?
>
> I should have done some reading before I posted:
>
> It seems that some of these rootkits use a kernel module or
> kernel-memory-patching to load then they conceal themselves. Pretty
> scary stuff.

Yeah, scary. But hella fun to play with ;) Kinda makes one a little paranoid ;)
Anyhow, check this site.

http://www.thc.org/home.php

click "software releases" and on page 2 there is a keylogger called vlogger. This thing is cool.
Plus, if ya have a split personality, you can be the black hat too (joking! ;)

Adore root kit is another nasty, it's fully loaded with options, but detectable these days; old. THC releases some
really fun tools and such.

goodnight,
eddie

---------
To unsubscribe, send email to <aklug-request@aklug.org>
with 'unsubscribe' in the message body.
Received on Thu Jul 29 00:37:44 2004

This archive was generated by hypermail 2.1.8 : Thu Jul 29 2004 - 00:37:44 AKDT