r1CK.J4MES
15th October 2004, 03:11
Hey,
I have come across a program developed for something called a rootkit. I should explain what a rootkit is. A rootkit is a bundle of applications that a malicious user(bad person) would put on someone elses computer for many different reasons. You could hide a keystroke logger and steal information/cc numbers ..., you could setup a ftp server on a high speed connection and create dumpsites, you could setup dcc bots. Many reasons. That is why public rootkit components will be detected as virii/trojans. There is however a component to a rootkit that is used to hide the memory that a program is running in from even the kernel using DKOM ( Direct Kernel Object Modeling ). This appears as if it would be very useful when coding the next version of Dawgster Hack or Evil hack or basically any other public hack in the community as PB would no longer be able to scan for a memory fingerprint since it would appear that none exists. Seems like a perfect step in defeating PB! I have included a link in my post for MOD APPROVAL! This is source to a PUBLIC version of a program called FU. It will hide the memory that a program is running in. IT WILL BE DETECTED AS A VIRUS if you just download and compile the program since it is part of a public rootkit that was used to infect peoples computers. THIS IS FLAGGED AS A VIRUS for that reason only. This is only the component used to hide programs from anything scanning for them. I have looked through the source and compiled my own private version of FU for myself. I will only provide a link to the source here because if you compile that and run it, it will be detected as a virus, reminding you that if you don't know what you are doing, you may not want to mess with it.
Link to Source http://stout.veritynet.net/~bitchykid/media/FU_Rootkit_Source.rar
WARNING
<< IF YOU COMPILE THIS SOURCE AS IS, IT WILL BE DETECTED AS A VIRUS >>
Read Above
Regards,
R1CK
I have come across a program developed for something called a rootkit. I should explain what a rootkit is. A rootkit is a bundle of applications that a malicious user(bad person) would put on someone elses computer for many different reasons. You could hide a keystroke logger and steal information/cc numbers ..., you could setup a ftp server on a high speed connection and create dumpsites, you could setup dcc bots. Many reasons. That is why public rootkit components will be detected as virii/trojans. There is however a component to a rootkit that is used to hide the memory that a program is running in from even the kernel using DKOM ( Direct Kernel Object Modeling ). This appears as if it would be very useful when coding the next version of Dawgster Hack or Evil hack or basically any other public hack in the community as PB would no longer be able to scan for a memory fingerprint since it would appear that none exists. Seems like a perfect step in defeating PB! I have included a link in my post for MOD APPROVAL! This is source to a PUBLIC version of a program called FU. It will hide the memory that a program is running in. IT WILL BE DETECTED AS A VIRUS if you just download and compile the program since it is part of a public rootkit that was used to infect peoples computers. THIS IS FLAGGED AS A VIRUS for that reason only. This is only the component used to hide programs from anything scanning for them. I have looked through the source and compiled my own private version of FU for myself. I will only provide a link to the source here because if you compile that and run it, it will be detected as a virus, reminding you that if you don't know what you are doing, you may not want to mess with it.
Link to Source http://stout.veritynet.net/~bitchykid/media/FU_Rootkit_Source.rar
WARNING
<< IF YOU COMPILE THIS SOURCE AS IS, IT WILL BE DETECTED AS A VIRUS >>
Read Above
Regards,
R1CK