对木马程序进行勘查取证分析的流程_木马程序勘验取证分析

对木马程序进行勘查取证分析的流程_木马程序勘验取证分析

电脑病毒Rootkit

在网络安全中经常会遇到rootkit,NSA安全和入侵检测术语字典( NSA Glossary of Terms Used in Security and Intrusion Detection)对rootkit的定义如下:A hacker security tool that captures passwords and message traffic to and from a computer. A collection of tools that allows a hacker to provide a backdoor into a system, collect information on other systems on the network,mask the fact that the system is compromised, and much more. Rootkit is a classic example of Trojan Horse software. Rootkit is available for a wide range of operating systems.

463 0 2023-01-22 木马程序