What is Rootkit?

A rootkit is malicious software designed to hide its presence and the activity of an attacker from a system.

To do this, the rootkit runs on a system with the highest privileges and intercepts and manipulates system calls making it virtually invisible to an administrator or monitoring software.

The objective of a rootkit is to reach the kernel of the operating system, or even to be placed with a higher level of privileges in the hypervisor or in the firmware.

Detecting a rootkit can be done through forensic analysis of an infected system or through software that identifies anomalies, although it is a complex process due to the sophistication of this piece of software.

We are using cookies to give you the best experience on our website. You can find out more about which cookies we are using or switch them off in Cookies Settings

Necessary

Strictly Necessary Cookie should be enabled at all times so that we can save your preferences for cookie settings.

Necessary cookies

3rd Party Cookies

This website uses Google Analytics to collect anonymous information such as the number of visitors to the site, and the most popular pages. Keeping this cookie enabled helps us to improve our website.

3rd party cookies

Cookies policy