A Forced Sampled Execution Approach to Kernel Rootkit Identification (2007)

by Jeffrey Wilhelm, Tzi-cker Chiueh
Venue:Proceedings of the 10th Recent Advances in Intrusion Detection (RAID