SecurityRatty: tag: binary

Binary Analysis Seminar At UC Berkeley

2008-02-01 14:50:21 by Chris Wysopal in Zero in a bit

...binary analysis: TRUST Seminar: BitBlaze: a Binary-centric Approach to Computer Security . This seminar is open to the public Binary analysis is imperative for protecting COTS (common off-the-shelf) programs and analyzing and defending against the myriad of malicious code, where source code is unavailable, and the binary may even be...

Tags: binary, binary analysis, binary-centric approach, seminar, security, real-world security, computer security, bitblaze project, dawn song

Web Based Malware Emphasizes on Anti-Debugging Features

2008-10-07 02:42:00 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...binary crypting and firewall bypassing verification" on demand in February, to August's overall anti antivirus software mentality as a key differentiation factor of the malware So what are they working on? Anti tracing and emulation protection, PeiD and PESniffer protection, as well as anti heuristic scanning with a simple junk data adding...

Tags: malware, web based malware, binary file, binary, simple, plain simple, anti, simple junk data, firewall

Expanding Response: Deeper Analysis for Incident Handlers

2008-10-10 08:38:00 by Russ McRee in HolisticInfoSec.org

...binary to see what can be learned and what the impacts of an outbreak on her network might be del.icio.us | digg | Submit to Slashdot

Tags: network, paper includes tools, incident handlers, network capture, deeper analysis, paper, gcih gold, includes details, pcap files

Spreading Malware Around the Christmas Tree

2007-12-24 18:33:57 by HASH0x896b164 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...binary. The domain merrychristmasdude.com is logically in a fast-flux, here are some more details Administrative, Technical Contact Contact Name: John A Cortas Contact Organization: John A Cortas Contact Street1: Green st 322, fl.10 Contact City: Toronto Contact Postal Code: 12345 Contact Country: CA Contact Phone: +1 435 2312633 Contact...

Tags: contact, contact postal code, technical contact, server, contact organization, contact city, contact country, contact street1, contact phone

BlackEnergy DDoS Bot Web Based C&Cs

2008-02-12 18:46:35 by HASH0x8b1c6c4 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...binary for the Windows platform that uses a simple grammar tocommunicate. Most of the botnets we have been tracking (over 30 at present) are locatedin Malaysian and Russian IP address space and have targeted Russian sites with theirDDoS attacks The following are currently live botnet C&Cs administration panels, and with BlackEnergy's only...

Tags: ddos, bot, blackenergy ddos bot, blackenergy, ddos extortion, ddos attacks, traditional irc bot, irc, botnet master

Crimeware in the Middle - Zeus

2008-04-24 04:37:46 by HASH0x8ae4648 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...binary generator. Each use creates a new binary file, and these files are radically different from each other -- making them notoriously difficult for anti-virus or security software to detect. To date very few variants have had effective anti-virus signatures against them and each use of the kit usually makes existing signatures ineffective....

Tags: zeus, file, remote file, zeus trojan, binary file, file system32 drivers, kit, metaphisher kit, configuration file

Auditing open source software

2007-10-08 16:13:00 by Panayiotis Mavrommatis in Google Online Security Blog

...binary data or protocols. We recommend being careful using any such code until it has been vetted for security (by extensive code auditing, fuzz testing, or preferably both). It is also important to watch for security updates for any decoding software you use, and keep patching up to date

Tags: image, malicious image file, libtiff image, values, jpeg image, tiff header values, source, evil tiff file, evil

Exaggerating Timing Attack Results Via GET Flooding

2007-12-10 04:04:33 by RSnake in ha.ckers.org web application security lab

...binary thing - one at a time or flooding. But what if we only launched enough GET requests with the intention of impacting server load, not bandwidth latency. So picking the right URL would be critical here (DB impacts, most likely When you found the right URL, launching a GET request flood against the server could seriously delay certain...

Tags: server load, server, requests, practical applications, time, bandwidth latency, url, times versus, difference

Have Your Malware In a Timely Fashion

2007-12-15 08:35:11 by HASH0x89f6724 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...binary at fernando123.ws/forum/load.php or fernando123.ws/forum/load.exe Detection rate : Result: 9/32 (28.13 File size: 43008 bytes MD5: 8ce2134060b284fa9826d8d7ca119f33 SHA1: 3074f95d6b54fa49079b20876efa0f4722e7fe7d As for the second campaign at 4583lwi4.tarog.us/in.cgi?19 , the malicious parties were quick enough to redirect the IFRAME...

Tags: malware, attack, malware attack, malware downloaders, media malware gang, loads, web site, site, php

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo