malicious code

From: Jeff Williams (jsquared@erols.com)
Date: 01/25/03

  • Next message: David Wagner: "Re: malicious code" 
    From: "Jeff Williams" <jsquared@erols.com>
To: <secprog@securityfocus.com>
Date: Sat, 25 Jan 2003 14:13:49 -0500

    Does anyone on the list know of any research in detecting "malicious code"
    as opposed to simply inadvertent security screwups? Seems to me that the
    best attacks would be very difficult to distinguish from a ordinary
    mistake.

    j2

    Relevant Pages

    • Re: malicious code
      ... Jeff Williams wrote: ... >Does anyone on the list know of any research in detecting "malicious code" ... >as opposed to simply inadvertent security screwups? ...
      (SecProg)
    • Re: IPS/IDS behavior with ISIC/UDPSIC/TCPSIC/ICMPSIC traffic
      ... I am not aware of whether NSS has or not the DDOS attacks in its list, ... Rate of traffic (earlier i worked with Intoto IPS and it has this type ... does not lies in detecting at DDOSed ... ISIC generates many packets with different IP protocols. ...
      (Focus-IDS)
    • Re: Ports->Process on Win NT/2k
      ... removing malicious code on Win2k.There is reference to some tools that may ... CArvey "Detecting and removing Trojans and malicious code from Win2" and ... >R Pradeep Chandran ...
      (Security-Basics)
    • RE: Intrusion Prevention
      ... ::: other detection systems, such as proactively detecting ... ::: detecting attacks ... ::: that are followed by reconnaissance activities, ...
      (Focus-IDS)
    • Re: Testing IDS with tcpreplay
      ... vs. detecting a specific set of packets. ... foundations for executing real attacks. ... I'd like to stress (in particular for IDS probes that are ...
      (Focus-IDS)