BetaArchive Logo
Navigation Home Screenshots Image Uploader Server Info FTP Servers Wiki Forum RSS Feed Rules Please Donate
UP: 28d, 20h, 43m | CPU: 22% | MEM: 6213MB of 11157MB used
{The community for beta collectors}

Post new topic This topic is locked, you cannot edit posts or make further replies.  [ 4 posts ] 
Author Message
 PostPost subject: Researchers release Win 7 rootkit exploit code        Posted: Sat May 09, 2009 10:54 am 
Administrator
User avatar
Offline

Joined
Fri Aug 18, 2006 11:47 am

Posts
12473

Location
Merseyside, United Kingdom

Favourite OS
Microsoft Windows 7 Ultimate x64
Researchers release Win 7 rootkit exploit code

Quote:
Security researchers have released a proof-of-concept rootkit for Windows 7, in the hopes that its availability will assist in the prompt development of an antidote.

Indian security researchers Vipin Kumar and Nitin Kumar demonstrated the toolkit, dubbed Vbootkit 2.0, at the Hack In The Box security conference in Dubai last month. Initially the security boffins wanted to keep the code under wraps, in case malicious hackers latched onto the approach.

They've since had second thoughts, prompting them to release the code for Vbootkit 2.0 under an open source licence, in the belief that its availability will assist the work of other security researchers.

As things stand, Vbootkit 2.0 doesn't lend itself to remote attack. It might also be thwarted by features such as BitLocker hard drive encryption and the Trusted Platform Module, in cases where this feature is available and enabled. BitLocker is only due to be available in Enterprise and Ultimate versions of Windows 7.

The Kumars are concerned that the attack approach against Windows 7 they have unearthed might be modified by skilled miscreants to develop remote attacks, hence the decision to give white hat security researchers a leg up in developing defences. They also want to make the case to Microsoft that it ought to make improved security features available across all versions of Windows 7, not just the higher-end versions.

"We would really like Microsoft to release one single edition with all features available to all user[s] instead of crippled editions," Kumar told eWeek. "Right now BitLocker and TPM are only available in the high-end versions."


Source: http://www.theregister.co.uk/2009/05/08 ... otkit_poc/

_________________
Image

BetaArchive Discord: https://discord.gg/epK3r6A


Top  Profile  WWW
 PostPost subject: Re: Researchers release Win 7 rootkit exploit code        Posted: Sat May 09, 2009 10:58 am 
FTP Access
Offline

Joined
Fri Mar 28, 2008 11:34 am

Posts
913
Well, better they patch it now before the first release :)


Top  Profile
 PostPost subject: Re: Researchers release Win 7 rootkit exploit code        Posted: Sat May 09, 2009 10:28 pm 
FTP Access
User avatar
Offline

Joined
Fri Sep 01, 2006 10:04 pm

Posts
1022

Location
The Ephemeral between existance and non-existance: AKA "being"

Favourite OS
Rhapsody, BeOS
How does it work?

_________________
Image
Part Time Troll - HPC Enthusiast - Spelling Master - Old Fart


Top  Profile  WWW
 PostPost subject: Re: Researchers release Win 7 rootkit exploit code        Posted: Sat May 09, 2009 10:39 pm 
Donator
Offline

Joined
Sat Oct 04, 2008 5:43 pm

Posts
1237

Location
Milky Way Galaxy

Favourite OS
Windows Server 2012 Dtc
http://www.nvlabs.in/archives/8-Vbootkit-2.0-is-now-open-source-under-GPL-license.html wrote:
Vbootkit 2.0 has now been made open-source under GPL license.

Vbootkit 2.0 currently only works on Windows 7

Download Vbootkit 2.0 source code http://www.nvlabs.in/uploads/projects/vbootkit2/vbootkit2.zip
Vbootkit 2.0 Attacking Windows 7 (x64) via Boot Sectors presentation[url]http://www.nvlabs.in/uploads/projects/vbootkit2/vbootkit2.0-AttackingWindows7viaBootSectors.odp /url]( x64 edition ).

_________________
See my profile for my website link.


Top  Profile  WWW
Display posts from previous:  Sort by  
Post new topic This topic is locked, you cannot edit posts or make further replies.  [ 4 posts ] 




Who is online

Users browsing this forum: No registered users and 6 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum

Search for:
Jump to:  

All views expressed in these forums are those of the author and do not necessarily represent the views of the BetaArchive site owner.

Powered by phpBB® Forum Software © phpBB Group

Copyright © 2006-2018

 

Sitemap | XML | RSS