OmniNerd Article Propagation

Most Nerd-Its | Nerd Trends | Last Ten

  1. President Obama Is No Friend To Gays in Gay Veteran Separated From Military
  2. RE: Poor Neda in Totalitarianism vs. Technology
  3. Pointless discussion in Faith Kills Infant
  4. RE: drive safe, have fun, stay connected in Do you text while driving?
  5. RE: No sir? in Gay Veteran Separated From Military
  6. Agnostic nonsense… in Faith Kills Infant
  7. RE: Atheistic Nonsense in Faith Kills Infant
  8. RE: No sir? in Gay Veteran Separated From Military
  9. YOU ARE A GOD!!! in Hard Drive Repair for Time Capsule With Internal Drive Error
  10. RE: No sir? in Gay Veteran Separated From Military

What is OmniNerd?

Welcome! OmniNerd's content is generated by you, the reader. Through voting and moderation we strive to highlight the nerdiest of what's around and provide content that's a little more thought provoking than other sites.

Voting Booth

Do you text while driving?

View Results, All Polls
47 votes, 9 comments
3
Nerd-Its
- +

System Management Mode Rootkit Innovation

Newspaper

article by Matthew Vea (VnutZ) on 16 May 2008, tagged as computing, security, hacking, and rootkit

System Management Mode (SMM) is an often overlooked operating state featured on Intel processors since the 80386. It existed to simplify debugging system code (whether operating system or even firmware) which was previously debugged using an In Circuit Emulator (ICE). System Management Mode allows select software to run completely independent of the running operating system and was intended for both debugging and allowing advanced power management software to execute. The ability to operate outside of the operating system’s jurisdiction of control and security monitoring has been the focus of rootkit research by Clear Hat Consulting. By operating a rootkit from within System Management Mode, the software will be undetectable by scanners and does not even require the modification of any core files to exist. While operating within System Management Mode, code can browse through the processing state tables in order to read or write to any desired location within the running, albeit suspended, operating system. A rootkit is a package of software designed to operate completely undetected to the host it resides in while allowing an external hacker complete, stealthy access to the compromised host.