Re: Malware and DoS analysis
- From: gmx <pal_adam@xxxxxxx>
- Date: Thu, 20 Jul 2006 23:09:05 +0200
Hello bitshield,
As far as i know, it doesnt make sense to test/analyze DOS
vulnerability, here are some reasons:
-hard to simulate a test, needs a lot of ressources
-dos mosltly ends in system failure, which can stop the production and
be pretty expensive
-no efficient measurements IF you found out that the company can be
dos`ed , the less which exist and are working (i think riverhead
technologies) are very expensive to be implemented
-mostly dos is not that intresting for intrusion
thats my point of view...
best regards
Adam Pal
Wednesday, July 19, 2006, 8:04:35 AM, you wrote:
<==============Original message text===============
bgc> Hello
bgc> I?m trying to analyse a company?s vulnerability to malware
bgc> (Viruses, Trojans, Backdoors, etc) and DoS. I?m however a little
bgc> bit stuck in finding an approach to do that. I?m trying to
bgc> collect properties that make a corporate environment vulnerable
bgc> to certain kinds of malware and DoS attacks.
bgc> Some of the points I want to have a closer look are:
bgc> - Internet Access architecture
bgc> - Intranet and DMZ architecture
bgc> - General Network defences
bgc> - Anti-Virus deployment
bgc> - Deployed Operating Systems and their patch level
bgc> - Employees? awareness regarding malware
bgc> - Proper defence-in-depth concept
bgc> Do you guys have any other ideas? What can be considered to analyze DoS susceptibility?
bgc> Thanks for your feedbacks
bgc> Joe
bgc> ---------------------------------------------------------------------------
bgc> This list is sponsored by: Norwich University
bgc> EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
bgc> The NSA has designated Norwich University a center of Academic Excellence
bgc> in Information Security. Our program offers unparalleled Infosec management
bgc> education and the case study affords you unmatched consulting experience.
bgc> Using interactive e-Learning technology, you can earn this esteemed degree,
bgc> without disrupting your career or home life.
bgc> http://www.msia.norwich.edu/secfocus
bgc> ---------------------------------------------------------------------------
<===========End of original message text===========
---------------------------------------------------------------------------
This list is sponsored by: Norwich University
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence
in Information Security. Our program offers unparalleled Infosec management
education and the case study affords you unmatched consulting experience.
Using interactive e-Learning technology, you can earn this esteemed degree,
without disrupting your career or home life.
http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------
- References:
- Malware and DoS analysis
- From: bitshield
- Malware and DoS analysis
- Prev by Date: RE: ADS Password Storage Protection
- Next by Date: RE: ADS Password Storage Protection
- Previous by thread: RE: Malware and DoS analysis
- Next by thread: Re: RE: Malware and DoS analysis
- Index(es):
