The Hacker Project - a free online game

March 28, 2024, 12:36:07 PM
Welcome, Guest. Please login or register.

Login with username, password and session length











Down with the mega-corporations!
Pages: [1]
Print
Author Topic: Rootkits  (Read 8629 times)
shellshocker
Newbie
*
Posts: 9


View Profile
« on: December 11, 2011, 06:30:38 PM »

it would be cool to see a rootkit virii that would hide other virii and processes completely unless a rootkit revealer of equal or higher version was used to find and disinfect the rootkit... could also be used to keep virii alive when ip is changed by reporting the new ip back to the rootkit owner...
Logged
bogdi59
Newbie
*
Posts: 5


View Profile
« Reply #1 on: February 08, 2012, 01:48:07 PM »

YES
Logged
iRoxor
Newbie
*
Posts: 9


View Profile
« Reply #2 on: June 29, 2012, 01:42:11 PM »

Would the rootkit be able to hide itself and its own process too, or would you need another rootkit to hide that rootkit and have your first rootkit hide the new one?
Logged
siremi
Administrator
Hero Member
*****
Posts: 1099



View Profile WWW Email
« Reply #3 on: July 24, 2012, 11:28:52 PM »

Would the rootkit be able to hide itself and its own process too, or would you need another rootkit to hide that rootkit and have your first rootkit hide the new one?


 laugh
Logged

Ulurukangoo
Newbie
*
Posts: 35


View Profile Email
« Reply #4 on: August 15, 2012, 04:08:11 PM »

Still a nice idea, or at least a way to conceal a virus somehow...
Is it planned for future update?
Logged
TheLeaderOfTheHOD
Newbie
*
Posts: 35


Hackers. United through darkness and deception.


View Profile
« Reply #5 on: February 02, 2013, 09:42:46 PM »

Here's how it could be. You run Rootkit Unhide and you would see the hidden processes and then be able to use an antivirus to kill the viri.
Logged
TheLeaderOfTheHOD
Newbie
*
Posts: 35


Hackers. United through darkness and deception.


View Profile
« Reply #6 on: February 02, 2013, 09:45:03 PM »

And yes, Rootkit should be able to hide itself like a File Hider can hide itself. If you want the file hidden, you could just use a file hider.
Logged
tomorty080
Jr. Member
**
Posts: 74


View Profile
« Reply #7 on: March 30, 2013, 09:14:55 PM »

i give that  thumbsup thumbsup thumbsup thumbsup thumbsup thumbsup
Logged

- posted in honor of ARVL
Quote
We are here to protect the world against the rev virus, we will be the last defenders, no matter what, we will be the last line of defense
N3hpy50X3
Full Member
***
Posts: 118


Deal With It. Don't Get


View Profile
« Reply #8 on: April 04, 2013, 03:18:03 PM »

Would the rootkit be able to hide itself and its own process too, or would you need another rootkit to hide that rootkit and have your first rootkit hide the new one?

you upload and install the Rootkit, hide the process and then destroy the Rootkit from Manage Softwares
you use Hide Files to hide files (this can be done remotely)

you should need a Rootkit Revealer (similiar to Unhide Files) to unhide the hidden process and a Anti-Rootkit Utility to destroy any Rootkits

you can hide a Rootkit's process with another Rootkit and then destroy the unhidden Rootkit

and you can hide any process not just for Virii
« Last Edit: April 04, 2013, 03:34:45 PM by N3hpy50X3 » Logged

.,..,....,,....,.,,...,,.,,.,.,,.,,.,..,.,,.,,,..,,..,,,..,......,,.,..,.,,,..,,..,......,,....,..,......,,.,,.,.,,..,.,.,,.,,,..,,,.,...,,....,.,,.,,....,......,,..,,,.,,....,.,,.,,.,.,,..,.,.,.,,,.
N3hpy50X3
Full Member
***
Posts: 118


Deal With It. Don't Get


View Profile
« Reply #9 on: April 04, 2013, 05:17:01 PM »

wait..

this is bad, if you install a rootkit then they can't remove it because you keep cracking them and killing their attempts - if it allows you to keep their ips then it's unfair for them because all you need is a 0.1 rootkit and then the only thing they can do is Format HDD or wait for you to stop playing

so maybe it just keeps a process running on your server and you have to trace it (but the linked process on their server can still remain hidden)
all processes, including Malware Logic Bombs and Malware Overload Bombs are kept running if their process is rooted, and even if it's unrooted - they still need to IP Change while it's uprooted otherwise it won't die with the change
..and a 0.1 rootkit should take up lots of space but the least of all of the other resources, like 1 cpu and 1 ram
« Last Edit: April 04, 2013, 05:28:25 PM by N3hpy50X3 » Logged

.,..,....,,....,.,,...,,.,,.,.,,.,,.,..,.,,.,,,..,,..,,,..,......,,.,..,.,,,..,,..,......,,....,..,......,,.,,.,.,,..,.,.,,.,,,..,,,.,...,,....,.,,.,,....,......,,..,,,.,,....,.,,.,,.,.,,..,.,.,.,,,.
N3hpy50X3
Full Member
***
Posts: 118


Deal With It. Don't Get


View Profile
« Reply #10 on: April 04, 2013, 05:52:04 PM »

by definition, Rootkit: A rootkit is a stealthy type of software, often malicious, designed to hide the existence of certain processes or programs from normal methods of detection and enable continued privileged access to a computer. (wikipedia)

by "continued privileged access" it means root/superuser, not remote access...but I guess the remote access is provided by the process it's hiding, so that means that the installer can't change IP without losing the connection between the two servers making them a sitting duck 16



Virus Breaker on a 0.1 Rootkit should work efficiently...
« Last Edit: April 04, 2013, 08:45:10 PM by N3hpy50X3 » Logged

.,..,....,,....,.,,...,,.,,.,.,,.,,.,..,.,,.,,,..,,..,,,..,......,,.,..,.,,,..,,..,......,,....,..,......,,.,,.,.,,..,.,.,,.,,,..,,,.,...,,....,.,,.,,....,......,,..,,,.,,....,.,,.,,.,.,,..,.,.,.,,,.
Pages: [1]
Print
Jump to: