Tuesday, February 17, 2009

Rootkit Analytics: Detection Techniques


Detection techniques can be classified into the following basic categories:
  • Signature-based Detection
  • Heuristics-based Detection
  • Comparison-based Detection:
    § Cross-view based Detection
    § Integrity-based Detection
We are currently reviewing existing tools and techniques, researching and building tools in these categories. Kindly, let us know if you think that we have missed any categories[email: contact.fingers @ gmail.com].

For more on our reviews and research, stay tuned.

- EF

No comments: