Some thoughts on Application level Root Kits from Matasano.
Ok quick question here? When is it a root kit and when is it something else?
A lot of this stuff sounds like Trojans or variants thereof.
I am reluctant to get into this discussion because the biggest flame war I was ever in involved semantics around root kits back in '98 but I am just trying to figure out how to classify some of this stuff.
Is it a "root" kit if it doesn't really touch the root? If it touches drivers that touch the root is that enough?
Perhaps another name would fit.
Appleech?
Just some non threatening don't hit me with the heavy metal object or set me on fire thoughts.
:)
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment