Skip to Main Content (Press Enter) Toggle side nav
Rootkits and Bootkits by Alex Matrosov, Eugene Rodionov and Sergey Bratus

Look Inside

Rootkits and Bootkits

Reversing Modern Malware and Next Generation Threats

Reversing Modern Malware and Next Generation Threats

By Alex Matrosov, Eugene Rodionov and Sergey Bratus

By Alex Matrosov, Eugene Rodionov and Sergey Bratus

By Alex Matrosov, Eugene Rodionov and Sergey Bratus

By Alex Matrosov, Eugene Rodionov and Sergey Bratus

Best Seller

Category: Technology

Category: Technology

Paperback $49.95

May 03, 2019 | ISBN 9781593277161

Ebook $29.99

May 07, 2019 | ISBN 9781593278830

All Formats
+
    Rootkits and Bootkits by Alex Matrosov, Eugene Rodionov and Sergey Bratus
    Paperback $49.95
    May 03, 2019 | ISBN 9781593277161

    Also available from:

    See All Formats (1) +

    Paperback

    • Paperback $49.95

      May 03, 2019 | ISBN 9781593277161

      Also available from:

    Ebook
    +

    • Ebook

      May 07, 2019 | ISBN 9781593278830

      Available from:

    *This title is not eligible for purchase to earn points nor for redemption with your code in the Reader Rewards program

    Buy the Ebook:

    About Rootkits and Bootkits

    Rootkits and Bootkits will teach you how to understand and counter sophisticated, advanced threats buried deep in a machine’s boot process or UEFI firmware.

    With the aid of numerous case studies and professional research from three of the world’s leading security experts, you’ll trace malware development over time from rootkits like TDL3 to present-day UEFI implants and examine how they infect a system, persist through reboot, and evade security software. As you inspect and dissect real malware, you’ll learn:

    • How Windows boots—including 32-bit, 64-bit, and UEFI mode—and where to find vulnerabilities
    • The details of boot process security mechanisms like Secure Boot, including an overview of Virtual Secure Mode (VSM) and Device Guard
    • Reverse engineering and forensic techniques for analyzing real malware, including bootkits like Rovnix/Carberp, Gapz, TDL4, and the infamous rootkits TDL3 and Festi
    • How to perform static and dynamic analysis using emulation and tools like Bochs and IDA Pro 
    • How to better understand the delivery stage of threats against BIOS and UEFI firmware in order to create detection capabilities
    • How to use virtualization tools like VMware Workstation to reverse engineer bootkits and the Intel Chipsec tool to dig into forensic analysis

    Cybercrime syndicates and malicious actors will continue to write ever more persistent and covert attacks, but the game is not lost. Explore the cutting edge of malware analysis with Rootkits and Bootkits.

    Covers boot processes for Windows 32-bit and 64-bit operating systems.

    About Rootkits and Bootkits

    Rootkits and Bootkits will teach you how to understand and counter sophisticated, advanced threats buried deep in a machine’s boot process or UEFI firmware.

    With the aid of numerous case studies and professional research from three of the world’s leading security experts, you’ll trace malware development over time from rootkits like TDL3 to present-day UEFI implants and examine how they infect a system, persist through reboot, and evade security software. As you inspect and dissect real malware, you’ll learn:

    • How Windows boots—including 32-bit, 64-bit, and UEFI mode—and where to find vulnerabilities
    • The details of boot process security mechanisms like Secure Boot, including an overview of Virtual Secure Mode (VSM) and Device Guard 
    • Reverse engineering and forensic techniques for analyzing real malware, including bootkits like Rovnix/Carberp, Gapz, TDL4, and the infamous rootkits TDL3 and Festi
    • How to perform static and dynamic analysis using emulation and tools like Bochs and IDA Pro 
    • How to better understand the delivery stage of threats against BIOS and UEFI firmware in order to create detection capabilities
    • How to use virtualization tools like VMware Workstation to reverse engineer bootkits and the Intel Chipsec tool to dig into forensic analysis

    Cybercrime syndicates and malicious actors will continue to write ever more persistent and covert attacks, but the game is not lost. Explore the cutting edge of malware analysis with Rootkits and Bootkits.

    Covers boot processes for Windows 32-bit and 64-bit operating systems.

    Product Details

    Category: Technology

    Paperback | $49.95
    Published by No Starch Press
    May 03, 2019 | 448 Pages | 7 x 9-1/4 | ISBN 9781593277161

    Category: Technology

    Ebook | $29.99
    Published by No Starch Press
    May 07, 2019 | 504 Pages | ISBN 9781593278830

    Inspired by Your Browsing History

    Buy other books like Rootkits and Bootkits

    Leading in the Digital World
    Leading in the Digital World
    Amit S. Mukherjee
    Malware Data Science
    Malware Data Science
    Hillary Sanders and Joshua Saxe
    Leading from the Emerging Future
    Leading from the Emerging Future
    Otto Scharmer and Katrin Kaeufer
    Design Structure Matrix Methods and Applications
    Design Structure Matrix Methods and Applications
    Tyson R. Browning and Steven D. Eppinger
    Trusted Data, revised and expanded edition
    Trusted Data, revised and expanded edition
    The Tangled Web
    The Tangled Web
    Michal Zalewski
    Under the Hood
    Under the Hood
    Stan Slap
    How to Hack Like a Ghost
    How to Hack Like a Ghost
    Sparc Flow
    Understanding the Digital Economy
    Understanding the Digital Economy
    Reinventing Talent Management
    Reinventing Talent Management
    Edward E. Lawler
    From Incremental to Exponential
    From Incremental to Exponential
    Ismail Amla, Vivek Wadhwa and Alex Salkever
    The AI Advantage
    The AI Advantage
    Thomas H. Davenport
    Analysis for Improving Performance
    Analysis for Improving Performance
    Richard A. Swanson
    Practical IoT Hacking
    Practical IoT Hacking
    Beau Woods, Evangelos Deirmentzoglou, Fotios Chantzis, Paulino Calderon and Ioannis Stais
    Why Digital Transformations Fail
    Why Digital Transformations Fail
    Tony Saldanha
    Speed and Scale
    Speed and Scale
    John Doerr
    Trusted Leader
    Trusted Leader
    David Horsager
    Absolute FreeBSD, 3rd Edition
    Absolute FreeBSD, 3rd Edition
    Michael W. Lucas
    How AI Is Transforming the Organization
    How AI Is Transforming the Organization
    MIT Sloan Management Review
    Management
    Management
    The Next Age of Disruption
    The Next Age of Disruption
    MIT Sloan Management Review
    A Bug Hunter's Diary
    A Bug Hunter’s Diary
    Tobias Klein
    International Relations in the Cyber Age
    International Relations in the Cyber Age
    David D. Clark and Nazli Choucri
    The New Fire
    The New Fire
    Andrew Imbrie and Ben Buchanan
    Studies in Business-Cycle Theory
    Studies in Business-Cycle Theory
    Robert E. Lucas, Jr.
    The TCP/IP Guide
    The TCP/IP Guide
    Charles M. Kozierok
    7 Rules for Positive, Productive Change
    7 Rules for Positive, Productive Change
    Esther Derby
    The Right Kind of Crazy
    The Right Kind of Crazy
    Adam Steltzner and William Patrick
    We Now Disrupt This Broadcast
    We Now Disrupt This Broadcast
    Amanda D. Lotz
    The Internet of Things, revised and updated edition
    The Internet of Things, revised and updated edition
    Samuel Greengard
    The Power Law
    The Power Law
    Sebastian Mallaby
    The Extreme Future
    The Extreme Future
    James Canton

    Praise

    “This deep reference, jam-packed with code and technical information, will support an engineer or system administrator tasked with putting these vulnerabilities in their place.” —Ben Rothke, Security Management


    “Alex Matrosov, Eugene Rodionov, and Sergey Bratus are experts in their field that have delivered a solid hands-on technical book. While enthralled with the stories from the trenches, I got flashbacks of my days of analyzing rootkits on SunOS and Solaris workstations about 20 years ago. It was a fun book to read.” —Sven Dietrich, Cipher: the newsletter of the IEEE Computer Society’s Technical Committee on Security and Privacy

    “I enjoyed reading the book and learning about the malware, even if it was not particularly relevant to me, as ‘I don’t do Windows.’ Still, there’s more than enough here that’s relevant to Linux users, as malware writers are now turning their attention to Linux servers.” —Rik Farrow, USENIX ;login: magazine

    Be the first to know!
    And go from well-read to best read with book recs, deals and more in your inbox every week.
    And go from well-read to best read with book recs, deals and more in your inbox every week.
    By clicking SIGN UP, I acknowledge that I have read and agree to Penguin Random House’s Privacy Policy and Terms of Use.
    Dismiss
    Thanks!
    Something awesome is on its way.
    Back to Top

    Visit other sites in the Penguin Random House Network

    Raise kids who love to read

    Brightly

    Raise kids who love to read
    An online magazine for today’s home cook

    TASTE

    An online magazine for today’s home cook