Rootkit

Definition

A rootkit is a type of malware that hides itself in the operating system and gives an attacker undetected, persistent access to a system.

Rootkits operate at the deepest level of the operating system — sometimes even at the firmware or bootloader level (bootkits). They manipulate the kernel to hide themselves and other malware from security software.

Related terms

Malware APT (Advanced Persistent Threat) EDR (Endpoint Detection & Response)
← Back to glossary