摘要
Rootkit是攻击者用来隐藏踪迹和保留访问权限、窃取密码、留下后门等的一组工具的集合,是一种危害性极大的特洛伊木马程序。深入研究Rootkit隐藏技术,有助于提高发现、检测和跟踪它的能力。本文针对Windows环境下的Rootkit隐藏技术进行了深入的分析和研究,并对相应的技术原理做了比较,展望了Rootkit隐藏技术的未来发展趋势。
Rootkit is group of tool set, which is used by hacker to hide trails and retain access authority after stealing passwords and leaving back door for futher purposes, as well as a kind of pretty harmful Trojan program. It is helpful and meaningful to do profound research on Rootkit's hidden techniques so as to improve,detect and trace its working ability. This paper mainly analyzes and studies Rootkit's hidden techniques under Windows environment. In addition, a comparisonis is given between its corresponding technical principles, and the future development trend of Rootkit hidden technology prospect is also to be discussed.
出处
《电脑知识与技术》
2008年第S2期141-142,共2页
Computer Knowledge and Technology
