Abstract
Statistics show that although malware detection
techniques are detecting and preventing malware, they do not
guarantee a 100% detection and / or prevention of malware.
This is especially the case when it comes to rootkits that can
manipulate the operating system such that it can distribute other
malware, hide existing malware, steal information, hide itself,
disable anti-malware software etc all without the knowledge of
the user. This paper will demonstrate the steps required in order
to create two rootkits. We will demonstrate that by
implementing rootkits or any other type of malware a researcher
will be able to better understand the techniques and
vulnerabilities used by an attacker. Such information could then
be useful when implementing anti-malware techniques.