Defined term

Rootkit

Rootkit: A set of tools used by an attacker after gaining root-level access to a host to conceal the attacker’s activities on the host and permit the attacker…

Verified
🏆 High Consensus
Cybersecurity
DefinitionSourcesRelated terms

Definition

A set of tools used by an attacker after gaining root-level access to a host to conceal the attacker’s activities on the host and permit the attacker to maintain root-level access to the host through covert means.

Alternative Definitions

Definition 2

A rootkit is a collection of software tools that are installed on a compromised system once it has been penetrated, in order to conceal the presence of the intruder (hacker or malware) and hide processes and files. Rootkits are important components of malware, for instance to prevent the malware from being identified by anti-virus programs.

Source: Information Assurance Situation in Switzerland and InternationallyType: external
Definition 3

A set of software tools with administrator-level access privileges installed on an information system and designed to hide the presence of the tools, maintain the access privileges, and conceal the activities conducted by the tools.

Source: NICCS GlossaryType: standard
Definition 4

A set of software tools with administrator-level access privileges installed on an information system and designed to hide the presence of the tools, maintain the access privileges, and conceal the activities conducted by the tools. (Adapted from: CNSSI 4009) (NICCS)

Source: The Cyber GlossaryType: external

Sources

1
Committee on National Security Systems Glossary CNSSI 4009-2015
View Source
2
Information Assurance Situation in Switzerland and Internationally
View Source
3
NICCS Glossary
View Source
4
The Cyber Glossary
View Source

Continue Research

Browse the full glossary for adjacent terms, or subscribe for updates when definitions and sources are expanded.

Browse all termsMore R termsSubscribe for updates