testing rootkit detection performance in ossec
128 views
Skip to first unread message
tayebe
Feb 16, 2011, 7:08:13 AM2/16/11
to ossec-list
hi all.
is there any way to test rootkit detection? i mean whether i should
download a rootkit sample,and install on my agents,and run rootcheck
component? is there any safer way to do this?
thx before.
is there any way to test rootkit detection? i mean whether i should
download a rootkit sample,and install on my agents,and run rootcheck
component? is there any safer way to do this?
thx before.
dan (ddp)
Feb 16, 2011, 2:34:06 PM2/16/11
to ossec...@googlegroups.com
What tests do you want to do?
I wouldn't recommend doing this outside of a sandboxed lab environment.
I wouldn't recommend doing this outside of a sandboxed lab environment.
Reply all
Reply to author
Forward
0 new messages