摘要
随着注册表监视软件的普及以及系统文件保护机制的增强,木马如何安全隐蔽的随机自启动成为一个挑战。论文描述了在Windows XP SP2环境中如何突破系统文件保护,实现基于IAT表的木马隐蔽自启动技术。
As the registry monitoring software is becoming more and more popular and meanwhile the system file protection is enhanced, how to startup Trojan horse when system boots troubles us. The paper propose a way of breaking windows file protection and starting up the Trojan horse when system boots.
出处
《信息安全与通信保密》
2007年第2期151-153,共3页
Information Security and Communications Privacy
关键词
安全
自启动
木马
security
automatic startup
Trojan horse