| Description |
1 online resource |
|
text txt rdacontent |
|
computer c rdamedia |
|
online resource cr rdacarrier |
| Summary |
Imagine being able to change the languages for the applications & nbsp;that a computer is running and taking control over it. That is exactly what managed code rootkits can do when they are placed within a computer. This new type of rootkit is hiding in a place that had previously been safe from this type of attack, the application level. Code reviews do not currently look for back doors in the virtual machine (VM) where this new rootkit would be injected. An invasion of this magnitude allows an attacker to steal information on the infected computer, provide false information, and disable security checks. & nbsp;Erez Metula shows the reader how these rootkits are developed and inserted and how this attack can change the managed code & nbsp;that a computer & nbsp;is running whether that be JAVA, .NET, Android Dalvik or any other managed code. Management development scenarios, tools like ReFrameworker and countermeasures are covered, making & nbsp;this book a one stop shop for this new attack vector. Introduces the reader briefly to managed code environments and rootkits in general Completely details a new type of rootkit hiding in the application level and demonstrates how a hacker can change language runtime implementation Focuses on managed code, including Java, .NET, Android Dalvik and reviews malware development scanarios. |
| Contents |
Part I: Overview -- Chapter 01 -- Introduction -- Chapter 02 -- Managed Code Rootkits -- Part II: Malware Development -- Chapter 03 -- Tools of the Trade -- Chapter 04 -- & nbsp;Runtime Modification -- Chapter 05 -- Manipulating the Runtime -- Chapter 06 -- Extending the Language with a Malware API -- Chapter 07 -- Automated Framework Modification -- Chapter 08 -- Advanced Topics -- Part III: Countermeasures -- Chapter 09 -- Defending against MCRs -- Part IV: Where Do We Go from Here? -- Chapter 10 -- Other Uses of Runtime Modification. |
| Bibliography |
Includes bibliographical references and index. |
| Summary |
"Introduces the reader briefly to managed code environments and rootkits in general--Completely details a new type of rootkit hiding in the application level and demonstrates how a hacker can change language runtime implementation--Focuses on managed code including Java, .Net, Android Dalvik, and reviews malware development scenarios"-- Provided by publisher |
| Note |
Print version record. |
| Subject |
Common Language Runtime.
|
|
Common Language Runtime
|
|
Computers -- Access control.
|
|
Virtual computer systems -- Security measures.
|
|
Rootkits (Computer software)
|
|
Computer security.
|
|
Ordinateurs -- Accès -- Contrôle.
|
|
Systèmes virtuels (Informatique) -- Sécurité -- Mesures.
|
|
Trousses administrateur pirate.
|
|
Sécurité informatique.
|
|
Computer security
|
|
Computers -- Access control
|
|
Rootkits (Computer software)
|
| Other Form: |
Print version: Metula, Erez. Managed code rootkits. Burlington, MA : Syngress, ©2010 9781597495745 (DLC) 2010036631 (OCoLC)635451806 |
| ISBN |
9781597495745 (electronic bk.) |
|
1597495743 (electronic bk.) |
| Standard No. |
AU@ 000046315160 |
|
AU@ 000065314021 |
|
CHNEW 001009903 |
|
DEBBG BV039827094 |
|
DEBBG BV042300710 |
|
DEBSZ 39911873X |
|
NZ1 13642881 |
|
NZ1 15187766 |
|
