Anti-rootkit safeguards: welcome Vista

Aleksander Czarnowski Avet

This is a follow-up to my VB2006 presentation and contains updated information regarding Windows Vista. This includes Microsoft driver signing policy, changes to PE format including 64-bit support and other technical details. It will also cover differences between beta versions used in previous research and final Vista release. Parts regarding Windows XP and 2003 will cover advances in hiding and detour techniques.

VB Conferences

VB2010 (Vancouver)

VB2009 (Geneva)

VB2008 (Ottawa)

VB2007 (Vienna)

VB2006 (Montréal)

VB2005 (Dublin)

VB2004 (Chicago)

VB2003 (Toronto)

VB2002 (New Orleans)

VB2001 (Prague)

VB2000 (Orlando)

VB99 (Vancouver)

VB98 (Munich)

VB97 (San Francisco)

VB96 (Brighton)

VB95 (Boston)

VB94 (Jersey)

VB93 (Amsterdam)

VB92 (Edinburgh)

VB91 (Jersey)

‘My first VB conference. I am very impressed and will be back next year for sure.’

Poll

How should software and OS patching/security updates be managed?

Leave a comment
View 19 comments

VB100 certification

This month's comparative review tackles the 64-bit version of Windows Server 2003 - with the platform bringing out quite a number of quirks and oddities in several of the products under test.
See full results.

Virus Bulletin currently has 165,678 registered users.

Fighting malware and spam