BOOTKITTY - A Stealthy Bootkit-Rootkit Against Modern Operating Systems
AI, Data Science & Cloud Certificates from Google, IBM & Meta
Build with Azure OpenAI, Copilot Studio & Agentic Frameworks — Microsoft Certified
Overview
Google, IBM & Meta Certificates – 40% Off
One plan covers every Professional Certificate on Coursera.
Unlock All Certificates
Explore a comprehensive research presentation examining BOOTKITTY, a sophisticated hybrid bootkit-rootkit malware designed to circumvent modern security features across Windows, Linux, and Android operating systems. Learn about critical firmware and bootloader vulnerabilities that enable low-level system compromises, including techniques for exploiting UEFI drivers, manipulating kernel memory, and evading advanced boot process mitigations. Discover how this malware breaks the chain of trust by operating at the lowest levels of system architecture, compromising firmware and bootloaders to gain control before security mechanisms initialize, while simultaneously embedding within OS kernels to maintain stealthy, long-term persistence. Understand the technical challenges involved in studying these elusive threats, from the scarcity of real-world samples to the complexities posed by defense-in-depth security in contemporary operating systems. Gain actionable insights into the critical weaknesses revealed in modern security mechanisms and the urgent need for holistic low-level protection strategies in system security design.
Syllabus
WOOT '25 - BOOTKITTY: A Stealthy Bootkit-Rootkit Against Modern Operating Systems
Taught by
USENIX