PORTO-
FREI

Rootkits and Bootkits

Reversing Modern Malware and Next Generation Threats

von Matrosov, Alex / Rodionov, Eugene / Bratus, Sergey   (Autor)

Rootkits and Bootkits will teach you how to understand and counter sophisticated, advanced threats buried deep in a machine's boot process or UEFI firmware. With the aid of numerous case studies and professional research from three of the world's leading security experts, you'll trace malware development over time from rootkits like TDL3 to present-day UEFI implants and examine how they infect a system, persist through reboot, and evade security software. As you inspect and dissect real malware, you'll learn: • How Windows boots-including 32-bit, 64-bit, and UEFI mode-and where to find vulnerabilities • The details of boot process security mechanisms like Secure Boot, including an overview of Virtual Secure Mode (VSM) and Device Guard • Reverse engineering and forensic techniques for analyzing real malware, including bootkits like Rovnix/Carberp, Gapz, TDL4, and the infamous rootkits TDL3 and Festi • How to perform static and dynamic analysis using emulation and tools like Bochs and IDA Pro • How to better understand the delivery stage of threats against BIOS and UEFI firmware in order to create detection capabilities • How to use virtualization tools like VMware Workstation to reverse engineer bootkits and the Intel Chipsec tool to dig into forensic analysis Cybercrime syndicates and malicious actors will continue to write ever more persistent and covert attacks, but the game is not lost. Explore the cutting edge of malware analysis with Rootkits and Bootkits. Covers boot processes for Windows 32-bit and 64-bit operating systems.

Buch (Kartoniert)

EUR 47,50

Alle Preisangaben inkl. MwSt.

Auch verfügbar als:

SOFORT LIEFERBAR (am Lager)
(Nur noch wenige Exemplare auf Lager)

Versandkostenfrei*

Versandtermin: 11. Juni 2025, wenn Sie jetzt bestellen.
(innerhalb Deutschlands, Sendungen in Geschenkverpackung: + 1 Werktag)

 
 

Produktbeschreibung

Rootkits and Bootkits will teach you how to understand and counter sophisticated, advanced threats buried deep in a machine's boot process or UEFI firmware.

With the aid of numerous case studies and professional research from three of the world's leading security experts, you'll trace malware development over time from rootkits like TDL3 to present-day UEFI implants and examine how they infect a system, persist through reboot, and evade security software. As you inspect and dissect real malware, you'll learn:

• How Windows boots-including 32-bit, 64-bit, and UEFI mode-and where to find vulnerabilities • The details of boot process security mechanisms like Secure Boot, including an overview of Virtual Secure Mode (VSM) and Device Guard • Reverse engineering and forensic techniques for analyzing real malware, including bootkits like Rovnix/Carberp, Gapz, TDL4, and the infamous rootkits TDL3 and Festi • How to perform static and dynamic analysis using emulation and tools like Bochs and IDA Pro • How to better understand the delivery stage of threats against BIOS and UEFI firmware in order to create detection capabilities • How to use virtualization tools like VMware Workstation to reverse engineer bootkits and the Intel Chipsec tool to dig into forensic analysis

Cybercrime syndicates and malicious actors will continue to write ever more persistent and covert attacks, but the game is not lost. Explore the cutting edge of malware analysis with Rootkits and Bootkits.

Covers boot processes for Windows 32-bit and 64-bit operating systems. 

Kritik

This deep reference, jam-packed with code and technical information, will support an engineer or system administrator tasked with putting these vulnerabilities in their place.
Ben Rothke, Security Management


Alex Matrosov, Eugene Rodionov, and Sergey Bratus are experts in their field that have delivered a solid hands-on technical book. While enthralled with the stories from the trenches, I got flashbacks of my days of analyzing rootkits on SunOS and Solaris workstations about 20 years ago. It was a fun book to read.
Sven Dietrich, Cipher: the newsletter of the IEEE Computer Society's Technical Committee on Security and Privacy

"I enjoyed reading the book and learning about the malware, even if it was not particularly relevant to me, as 'I don t do Windows.' Still, there s more than enough here that s relevant to Linux users, as malware writers are now turning their attention to Linux servers."
Rik Farrow, USENIX ;login: magazine


"[A] seminal book that explains how to understand and counter sophisticated, advanced threats buried deep in a machine s boot process or UEFI firmware."
Business Wire 

Autoreninfo

Alex Matrosov, Eugene Rodionov, and Sergey Bratus 

Mehr vom Verlag:

Random House LLC US

Produktdetails

Medium: Buch
Format: Kartoniert
Seiten: 448
Sprache: Englisch
Erschienen: Mai 2019
Maße: 233 x 177 mm
Gewicht: 866 g
ISBN-10: 1593277164
ISBN-13: 9781593277161

Herstellerkennzeichnung

Libri GmbH
Europaallee 1
36244 Bad Hersfeld
E-Mail: gpsr@libri.de

Bestell-Nr.: 17262233 
Libri-Verkaufsrang (LVR):
Libri-Relevanz: 6 (max 9.999)
 

Ist ein Paket? 0
Rohertrag: 15,54 €
Porto: 2,75 €
Deckungsbeitrag: 12,79 €

LIBRI: 2475921
LIBRI-EK*: 28.86 € (35%)
LIBRI-VK: 47,50 €
Libri-STOCK: 6
* EK = ohne MwSt.
P_SALEALLOWED: AD AE AF AG AI AL AM AO AQ AR AS AT AU AW AX AZ BA BB BD BE BF BG BH BI BJ BL BM BN BO BQ BR BS BT BV BW BY BZ CA CC CD CF CG CH CI CK CL CM CN CO CR CU CV CW CX CY CZ DE DJ DK DM DO DZ EC EE EG EH ER ES ET FI FJ FK FM FO FR GA GB GD GE GF GG GH GI GL GM GN GP GQ GR GS GT GU GW GY HK HM HN HR HT HU ID IE IL IM IN IO IQ IR IS IT JE JM JO JP KE KG KH KI KM KN KP KR KW KY KZ LA LB LC LI LK LR LS LT LU LV LY MA MC MD ME MF MG MH MK ML MM MN MO MP MQ MR MS MT MU MV MW MX MY MZ NA NC NE NF NG NI NL NO NP NR NU NZ OM PA PE PF PG PH PK PL PM PN PR PS PT PW PY QA RE RO RS RU RW SA SB SC SD SE SG SH SI SJ SK SL SM SN SO SR SS ST SV SX SY SZ TC TD TF TG TH TJ TK TL TM TN TO TR TT TV TW TZ UA UG UM US UY UZ VA VC VE VG VI VN VU WF WS YE YT ZA ZM ZW
P_SALEFORBIDDEN: AN CS YU
DRM: 0
0 = Kein Kopierschutz
1 = PDF Wasserzeichen
2 = DRM Adobe
3 = DRM WMA (Windows Media Audio)
4 = MP3 Wasserzeichen
6 = EPUB Wasserzeichen

UVP: 2 
Warengruppe: 16360 

KNO: 56477485
KNO-EK*: 24.71 € (40%)
KNO-VK: 49,90 €
KNO-STOCK:
KNO-MS: 17

KNOABBVERMERK: 2019. 448 S. 9.2500 in
Einband: Kartoniert
Sprache: Englisch
Beilage(n): ,

Alle Preise inkl. MwSt. , innerhalb Deutschlands liefern wir immer versandkostenfrei . Informationen zum Versand ins Ausland .

Kostenloser Versand *

innerhalb eines Werktages

OHNE RISIKO

30 Tage Rückgaberecht

Käuferschutz

mit Geld-Zurück-Garantie