Imagine you own or you're responsible for a few servers. Now what if a hacker manages to get inside and you never get to realize it, while peacefully using the server and storing/processing your sensitive data in it. Even if you manage to install a Host Intrusion Detection System (HIDS) if the hacker successfully performs privilege escalation, he/she can simply turn the HIDS off. So what now?
What if I told you there's a way you can protect yourself. A way you can execute a HIDS on your server in what is usually known as stealth mode and even if a hacker gets root access to your server, he/she won't be able to simply turn it off.
That's what I'll be explaining in my presentation. A way to detect an intrusion on your server while hiddenly executing the HIDS so only you can turn it on/off, or reconfigure it.