graphics card, motherboard, memory security question?
It has come to my attention that certain rootkits evade detection by hiding in an HDD's Host
Protected Area or in the Device Configuration obverlay area, both of which are generally not visible to the user. Hdparm and other tools such as the Sleuth kit (as well as some physical write blockers used by computer forensics professionals) supposedly let you disable both the HPA and the DCO, meaning that it should be possible to securely wipe all your data, including viruses, worms, trojans, rootkits, etc.
My question is as follows: is it possible for some piece of malware to infect a user's graphics card, motherboard, memory, etc? I know that ClamWin has the ability to scan memory for malicious programs, but is there any chance some of these programs are somehow hiding in any of the non-HDD components, lingering in obscure hidden areas of one's motherboard or graphics card or whatnot.
You will not know until you run a good scanner for your computer.
|
|
File System Forensic Analysis $35.00 This is an advanced cookbook and reference guide for digital forensic practitioners. File System Forensic Analysis focuses on the file system and disk. The file system of a computer is where most files are stored and where most evidence is found; it also the most technically challenging part of forensic analysis. This book offers an overview and detailed knowledge of the file system and disc ... |
|
|
Computer Forensics, including: Computer Surveillance, The Coroner's Toolkit, Mac Times, Evidence Eliminator, The Sleuth Kit, Hashkeeper, Host ... Overlay, Encase, Selective File Dumper $11.05 Hephaestus Books represents a new publishing paradigm, allowing disparate content sources to be curated into cohesive, relevant, and informative books. To date, this content has been curated from Wikipedia articles and images under Creative Commons licensing, although as Hephaestus Books continues to increase in scope and dimension, more licensed and public domain content is being added. We belie... |
|
|
Forensic Equipment, including: The Coroner's Toolkit, The Sleuth Kit, Hashkeeper, Encase, Computer Online Forensic Evidence Extractor, Forensic ... Integrated Ballistics Identification System $15.10 Hephaestus Books represents a new publishing paradigm, allowing disparate content sources to be curated into cohesive, relevant, and informative books. To date, this content has been curated from Wikipedia articles and images under Creative Commons licensing, although as Hephaestus Books continues to increase in scope and dimension, more licensed and public domain content is being added. We belie... |