SecurityRatty: tag: reverse

Reverse Compliance or "Logs as Proof of Incompetence?"

2008-05-06 17:27:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -

...reverse compliance" against logs Whaaaat? WTF is "reverse compliance Reverse compliance" is a motivation to purposefully avoid technologies that have a chance of telling you that you are NOT in compliance. Sadly , logging is featured very high on the list of such technologies that a) tell you about all the problems with your compliance...

Reverse-Engineering Exploits from Patches

2008-04-23 13:35:08 by schneier in Schneier on Security

...reverse-engineer the security vulnerability that is being patched and create exploit code to exploit it Turns out you can. What does this mean Attackers can simply wait for a patch to be released, use these techniques, and with reasonable chance, produce a working exploit within seconds. Coupled with a worm, all vulnerable hosts could be...

Tags: exploit, security patch, exploit code, patch, security vulnerability, simply wait, redesign windows, propose solutions, vulnerable hosts

Hindering Reverse Engineering: Thinking Outside the Box

2008-05-22 06:22:47 by Editor in IEEE Security and Privacy

Protecting application software from reverse engineering and piracy is key to ensuring the integrity of intellectual property and critical infrastructures. Unorthodox protection strategies can help mitigate these types of attacks. Such strategies must include random, dynamic protections to complicate the ease with which attackers can overcome...

Tags: strategies, unorthodox protection strategies, overcome standard approaches, dynamic protections, intellectual property, application software, reverse, critical infrastructures, include random

Reverse Engineering: Anti-Cracking Techniques

2008-07-01 12:03:06 by Editor in Help Net Security - Articles

This paper is a guide into better understanding most of the approaches a reverse engineer can follow in order to achieve his goal. Additionally, it includes a number of advices on how to better protec

Tags: reverse engineer, follow, advices, guide, goal, protec, approaches, paper, includes

Losing Money When There is No Volatilty

2007-01-29 09:40:00 by Jomni in Risk Management Quant

...reverse convertible bonds A conventional convertible bond offers lower interest rates but gives the investors an option to call a company's stock. The bondholder is effectively the owner of the option and the issuer is the option writer. A reverse convertible bond gives investors higher interest rates but gives the issuer the right to put...

Tags: option prices increase, option, option buyer, option writer, investments valuation volatility, valuation, volatility, decrease option, volatility increases

Hackers Holy Grail - Redefined by Microsoft

2008-04-29 16:53:42 by Erik T. Heidt in Art of Information Security

...reverse engineered It is well documented that cybercrime is not only big business, but that it is highly organized. The fact that, in the cybercrime underworld, there are markets for stolen data, toolkits (such as the Rock Phish Kit ), and services (such as renting time on Botnets) is a strong demonstration of how organized (and profitable)...

Tags: holy grail, microsoft, hackers holy grail, black hat community, cybercrime underworld, cybercrime, computer, gather digital evidence, reverse engineer

More trustworthy election systems via SDL?

2008-02-04 23:34:00 by sdl in The Security Development Lifecycle

...reverse engineer how individual voters voted by examining the aggregate tally of votes (which can be found on the Mobile Ballot Boxes MBB) in conjunction with the audit log. The MBB has mitigations in place to protect integrity (tampering) of votes, but doesnt appear to protect against information disclosure. The SDL cryptographic policies...

Tags: machine security concerns, security concerns, election systems, election, security, security researchers, election systems margin, margin, election management system

The reason behind the "We're sorry..." message

2007-07-09 11:54:00 by Niels Provos in Google Online Security Blog

...reverse Turing test meant to establish that we are talking to a human user - and to continue searching. However, automated processes such as worms would have a much harder time solving the CAPTCHA. Several things can trigger the sorry message. Often it's due to infected computers or DSL routers that proxy search traffic through your network -...

Tags: web servers, vulnerable web servers, message, google, worms, google displays, worms pdf, queries, detect anomalous queries

Web Server Software and Malware

2007-06-05 09:30:00 by Niels Provos in Google Online Security Blog

...reverse, which is part of the cause of Microsoft IIS having a disproportionately high representation at 49% of malware servers. In summary, our analysis demonstrates how important it is to keep web servers patched to the latest patch level

Tags: servers serve malware, servers, apache servers, malicious servers, web server software, server software, web servers, microsoft iis, microsoft iis features

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo