0.0.3

Rating: No reviews yet
Downloads: 13
Released: Oct 30, 2009
Updated: Oct 30, 2009 by kernelnet
Dev status: Alpha Help Icon

Recommended Download

Application kdar.0.0.3.zip
application, 4K, uploaded Oct 30, 2009 - 13 downloads

Release Notes

KDAR - Kernel Debugger Anti Rootkit

version: 0.0.3
supported OS: WindowsXP x86

1. Whats new

version 0.0.3
- analyze PsProcessType object manager's type
- analyze tcpip.sys, afd.sys, ndis.sys for hook in the dispacth table and slices in the images

version 0.0.2:
- analyze OS Object Manager types.


2. Intsalltion

- Unpack archive file

3. Run scipts

- open kernel dump with windbg or stop target machine
- set eviroment variable KDAR_PATH
- type $$><dirwhearearchive_unpacked\kdar\kdar.dcmd
- analyze output

Reviews for this release

No reviews yet for this release.