| Written by David Reguera García |
| Sunday, 3 December 2006 |
|
DOWNLOAD
Conference given at Fist (Barcelona) the 1st of December 2006, the conference talks about
how to use a GNU/Linux module of the kernel, you can evade the security systems of:
Unhide, Rkhunter y Chkrootkit; the evading module has benn based in EnyeLKM from RaiSe,
a “beta” version will be uploaded at the end of December (we hope):
1) DEMO 1. EnyeLKM 1.1 by RaiSe.
2) DEMO 2. EnyeLKM 1.1 + Bypassing Unhide by RaiSe & David Reguera García.
3) DEMO 3. EnyeLKM 1.1 by RaiSe. Rkhunter + Chkrootkit.
4) DEMO 4. EnyeLKM 1.1 +Bypassing Unhide Rkhunter + Chkrootkit.
Note: Aparently when compiling the module enyelkm.ko they look the same in all of them,
but they are not, (the compilation banner was not changed).
|
Last updated ( Sunday, 3 December 2006 ) |