Anti-rootkit safeguards: welcome Vista

Aleksander Czarnowski Avet

Technical stream: Wednesday 19 September 2007, 15:40 - 16:20.

This is a follow-up to my VB2006 presentation and contains updated information regarding Windows Vista. This includes Microsoft driver signing policy, changes to PE format including 64-bit support and other technical details. It will also cover differences between beta versions used in previous research and final Vista release. Parts regarding Windows XP and 2003 will cover advances in hiding and detour techniques.

VB Conferences

VB2008 (Ottawa)

VB2007 (Vienna)

VB2006 (Montréal)

VB2005 (Dublin)

VB2004 (Chicago)

VB2003 (Toronto)

VB2002 (New Orleans)

VB2001 (Prague)

VB2000 (Orlando)

VB99 (Vancouver)

VB98 (Munich)

VB97 (San Francisco)

VB96 (Brighton)

VB95 (Boston)

VB94 (Jersey)

VB93 (Amsterdam)

VB92 (Edinburgh)

VB91 (Jersey)

‘The whole conference was superb. Not enough superlatives to describe it.’

Poll

Is it reasonable to teach virus writing as part of a computer security course?

Leave a comment
View 5 comments

Jobs

In Virus Bulletin's jobs pages among others:

Avert Director of APAC Operations (Bangalore, Singapore or Hong Kong, Hong Kong)
Software Engineer Anti-Malware (m/f) (Paderborn, Germany)

Virus Bulletin currently has 133,846 registered users.

Fighting malware and spam