Login or Register to Ask a Question and Join Our Community

linux operating commands and unix operating commands

Alternate Data Streams

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
# 1  
Old 01-02-2009
Alternate Data Streams
Alternate Data Streams (ADS) is a feature of Microsoft Windows NTFS file system.  It allows a means of hiding files, data, and even applications on a system.  It is difficult to detect ADS material without specialized tools.  Microsoft doesn't say very much about it, but some information on ADS is available in this MSDN article, under the section about Multiple File Streams.

An overview of ADS can be found on the WindowSecurity.com site.  Another ADS review is available from Infosecwriters.com.

A FAQ, with specific questions and points about Alternate Data Streams, is available from Frank Heyne, who also wrote LADS, a tool for determining the existence of ADS in a directory.  Another utility is adsdump.

Image
Image

More...
Login or Register to Ask a Question

Previous Thread | Next Thread

7 More Discussions You Might Find Interesting

1. Programming

Why must flush all line-buffered output streams?

Hi, Mentioned in Stevens & Rago "Advanced Programming in the UNIX" I don't understand why must flush all line-buffered output streams when (a)an unbuffered or (b)a line-buffered stream require data from kernel? (2 Replies)
Discussion started by: Edward114
2 Replies

2. AIX

AIX STREAMS driver question

Hi all, I have a AIX kernel STREAMS question need your help, I need to implement a firewall on AIX and get packet raw data then decide pass or drop it, I've seen similiar firewall code on HP-UX, on HP-UX, you have to implement a "dlpi STREAMS driver", and specify it as a "dlpi" driver in... (1 Reply)
Discussion started by: rocktilldie
1 Replies

3. Shell Programming and Scripting

Problem with pipes on infinite streams

Here is an example code that shows the issue I have: #!/bin/bash counter() { seq 1000 | while read NUM; do echo $NUM echo "debug: $NUM" >&2 sleep 0.1 # slow it down so we know when this loop really ends done } counter | grep --line-buffered "" | head -n1 ... (10 Replies)
Discussion started by: tokland
10 Replies

4. Programming

unbuffered streams.

#include "../ourhdr.h" int main(void) { int c; char *buf; setvbuf(stdin,buf,_IONBF,10); setvbuf(stdout,buf,_IONBF,10); while((c=getc(stdin)) != EOF) { if(putc(c,stdout) == EOF) err_sys("output... (2 Replies)
Discussion started by: gandhevinod
2 Replies

5. SCO

WARNING: No Memory for Streams (NSTRPAGES)

Anybody have a clue what might have caused the Failures under Class 6? I did a reboot and so far so good, I had been up for about 55 days prior to the reboot. I'm running SCO_SV rel 3.2v5.0.7. Steve #netstat -m streams... (1 Reply)
Discussion started by: Steve_93630
1 Replies

6. UNIX for Advanced & Expert Users

Transparent ioctls Streams calls

What are transparent ioctls messages and when and why we have to issue copyin or copyout kernel utilities with respect to ioctls calls to a Stream. (2 Replies)
Discussion started by: S.P.Prasad
2 Replies

7. UNIX for Dummies Questions & Answers

STREAMS

Hi Everyone I am building some A Class HP boxes as web proxy servers, have just installed HP-UX 11.00 and am starting to configure one according to our standard build policy. However on the A Class I just happened to place the software depot this error message keeps popping up every 2 mins: ... (1 Reply)
Discussion started by: alwayslearningunix
1 Replies
Login or Register to Ask a Question