Testing rootkits is too time-consuming and I'm also not competent for that. My question is: How big percentage of rootkits are still using basic methods easily detected by most tools? Ie. are eg. Sophos anti-rootkit anf F-secure blacklight usually OK, or does one usually need more advanced tools? PS. What do you think of Unhackme?