-
Hi bowlofste,
Please let me know how to build v1.0.
Build environment used is Windows Driver Kit v7.1.0.
More specifically, Windows XP x86 Checked Build Environment.
Following error gets produced.…
-
I have succesfully installed vlany on a clean centos box (a kvm vps), centos 6.8 x64 distro with the latest updates (the minimal install). Nothing else is running on that vps since is was specifically…
-
As we recently added rootkit detection capabilities in Tracee, we should make it clear to the user of Tracee what is the adversary model Tracee protects against, meaning, what are the capabilities tha…
-
It seems logging isn't working. I see this in the reports_log
```
Report log: OK
Date/Time: 2023-11-12T22:01:39-07:00
IP address: 45.137.203.64
Comments: User agent cited by various attack tool…
-
1.this rootkit cannot make success on my centos7(3.10.0-862.el7.x86_64)
2.I recently tried to create HIDS,i consult some infomation(actually i am a rootkit rookie),I noticed that Linux audit is ver…
-
It's looking for Unix rootcheck files:
2013/09/14 09:18:54 ossec-rootcheck: No rootcheck_files file: './db/rootkit_files.txt'
2013/09/14 09:18:54 ossec-rootcheck: No rootcheck_trojans file: './db/roo…
-
After I ran
`nheqminer.exe -h`,
my taskbar froze and Windows became unusable / didn't respond anymore. I had to do a hard reset. After that I discovered that the nheqminer.exe file has disappeared …
-
I got my driver manual mapped using Blackbone mmap and in some anti rootkits it is indeed hidden nicely! But in pchunter it showed it as a "Suspicious DriverObject", any idea how they could detect the…
-
Hi,
Can we remove this line out of this file:
wazuh-ruleset/rootchecks/rootkit_trojans.txt
Line 95: /etc/hosts !^[^#]*ca\.com! Anti-virus site on the hosts file
This triggers on valid websi…
-
Prior to Dropwizard 2.1, the healthcheck JSON output (from `io.dropwizard.modules:dropwizard-health`) was limited to pretty much a boolean output ("healthy" or "unhealthy").
With 2.1, the JSON resp…