Sunday, July 25, 2010

ARKit - An open-source rootkit detection library for Windows

ARKit is an open-source rootkit detection library for Microsoft Windows. ARKit has two components:
  1. ARKitLib - A Win32/C++ static library that exposes various methods to scan system and detect rootkits
  2. ARKitDrv - A device driver that actually implements methods to scan and detect rootkits
Currently, ARKit has following features:
  1. Process scanning – Detect all running processes (hidden and visible)
  2. DLL scanning – Detect DLLs loaded in a process
  3. Driver scanning – Detect all loaded drivers (hidden and visible)
  4. SSDT hook detection
  5. Sysenter hook detection
  6. Kernel inline hook detection
ARKit works on 32-bit flavors of Windows 2000, XP, 2003 and Vista. It has not been tested on Windows 2008 and Windows 7 yet.

For more information on ARKit project, please visit:

3 Comments:

Anonymous Anonymous said...

I did not know how to do that thanks!
Insurance Olympia

7:44 AM  
Anonymous Anonymous said...

Car insurance Seattle

Thanks for the info

1:41 PM  
Anonymous hp laptop battery said...

The HP laptop is packed with the latest features that include Windows Vista Home Premium operating system, Intel Core 2 Duo processor, RAM performance, HP 510 battery replacement, HP pavilion DV5000 battery, HP Pavilion dv6 Battery and much more. It really helps a person to manage his or her personal and professional works effectively and efficiently.
In fact, laptops offer different entertainment options also as a powerful gaming experience, so you can play your favorite games, watch movies, view movies, videos, store photos, HP Compaq 6720S battery, HP Pavilion dv8000 Battery and last but not least, you can also listen favorite songs.

1:51 PM  

Post a Comment

<< Home