I recently tested the popular anti-rootkits in Windows 8 x32.
The video demonstrates that existing tools like PowerTool, TDSSKiller, Xuetr do not allow to detect hide driver. My tool WinKar can detect it!
ATSIV.EXE is Windows tool for non-signed driver installation - http://blogs.technet.com/b/ms_schweiz_security_blog/archive/2007/08/13/windows-vista-64bit-non-signed-driver-install-tool-atsiv-blocked.aspx
To view the video - set HD quality and full screen
General scheme of WinKar and video comments
Hi dude Can you share your tool WinKar with us ? TKS
ReplyDelete+1
ReplyDeleteI want to test some of my ironz and post results.
Sorry, guys! I can't share winkar for some reasons, but I can test your rootkits if you send it. That is very intresting!!
ReplyDeleteMy e-mails igor.korkin@gmail.com or igor.korkin@mail.ru
What is your opinion about using VMMKAR, https://sites.google.com/site/igorkorkin/vk?