Language Selection

English French German Italian Portuguese Spanish

HookSafe Protects Kernel from Rootkits

Filed under
Linux
Security

The four researchers into the rootkit protector created and implemented a special virtualized system that defends against persistent rootkits that tamper with kernel execution. The system assembles specific function calls and messages, mirrors them in a "shadow interrupt stack" in a central location and protects them from hardware write access. To test their product, called HookSafe, the team let loose a few real rootkits and also measured the system load on the host system. The result showed just a 6% system slowdown, but with a highly effective implementation of the protection.

The team found successful defense against, for example, the Adore-ng and Phalanx rootkits. Xuxian Jiang, one of the four team members, told Linux Pro Magazine that the HookSafe source code will probably be made public sometime in the future.

Rest Here




More in Tux Machines

Kali Linux Alternative: BackBox Linux 4.6 Released With Updated Hacking Tools

BackBox Linux, a Kali Linux alternative, is here with its latest version i.e. BackBox Linux 4.6. Based on Ubuntu Linux, this hacking operating system is now available for download with updated hacking tools and Ruby 2.2. Read more

Chromebook and GNU/Linux

  • Turn Your Old Laptop into a Chromebook
    Once the drive is ready with bootable CloudReady, plug it into the target PC and boot the system. It may take a while for the system to boot into Chromium OS. Once booted, you will see the screen shown in Figure 3.
  • Running Linux and Chrome OS Together Using Crouton
    Leo Laporte is a longtime technology commentator and also the host of the show “The Screen Savers,” on the TWiT Netcast Network. In this video he explains how to install Linux on a Chromebook using Crouton, an open source tool developed by Google employee David Schneider.

Phoronix on Graphics

12-Way NVIDIA GeForce Comparison For F1 2015 On Linux

While the F1 2015 Formula One racing game was released for Windows last year, only yesterday was the Linux port released by Feral Interactive. Given the high requirements for F1 2015 on Linux with this OpenGL port, I decided to test this racing game on a range of NVIDIA graphics cards under Ubuntu Linux. Yep, only NVIDIA tests this round as the game doesn't work yet with the AMD Linux drivers. Read more