July 3rd, 2006, 09:47 PM
Note: this is not about the matrix or anything related to that.
Second note: I didn't know where to place this, because its a malware this section seemed best to me.
I read this on eweek  and another (dutch) rss feed. I went in search of the website  . After clicking trough to the blog  site my fear was lessend, thank god.
'Blue Pill' Prototype Creates 100% Undetectable Malware'
It turns out that its still in prototype status and is still not 100% undetactable.
The blog further explains things about how the program works, although I have to admit that I haven't read it all. Much of the things explained there are above my limmeted knowledge of the computer.
About the eweek article, by the creator of "the blue pill" :It suggests that I already implemented "a prototype of Blue Pill which creates 100% undetectable malware", which is not true.
P.s. I do not mean to scare anyone as I'm certain that someone will already have read it. I just thought I'd post about it to inform those who didn't. I hope I didn't cause a fuss or anything like that, that is not my intention.
September 6th, 2007, 05:24 PM
Some of you may have noticed that currently, there is a constructive - er - competition
in progress - Joanna still claims the undetectability of her HVM rootkit[1,2],
while others argue that they can detect it[3,4].
The reason I am writing this post is another, however. A month ago, quite
a nice paper has been published, which gives a review of the HVM situation
and explains in some detailed level the development of such a rootkit.
If you want to go further into coding, have a look at the bluebillproject,
which offers some source code.
 http://theinvisiblethings.blogspot.c...1_archive.html (second entry)
If the only tool you have is a hammer, you tend to see every problem as a nail.
(Abraham Maslow, Psychologist, 1908-70)