Rootkit development (6)
In this category, rootkit technologies are discussed. The reference of most of the materials is the Professional Rootkits book by Ric Vieler from Wiley publication. Most of the source codes are the same as the original source codes in this book except the comments and minor customization. A rootkit is basically a driver so we first build a driver and then add hooking, keylogging and concealment functionalities. Please first read our introduction article to understand how to compile the rootkit, load and start it. After that you can read other articles by any order you want. While reading articles do not try to compile the codes you see, they intend to convey the knowledge so they ignore the details. At the beginning or the end of each article you see a link to download the rootkit source codes plus a compiled version in the download link.