Security analysts use stealth to win the "arms race" against malware. Getting around the defense mechanisms that malware writers erect isn’t easy. From packers to run-time obfuscators, software-armoring techniques create problems for reverse engineers and security analysts.
Security pros Danny Quist and Val Smith, of Offensive Computing, have a solution—Saffron, a stealthy debugging platform they are developing. Having first presented the tool at the 2007 Black Hat conference in Las Vegas, the two demonstrated an updated version Feb. 17 at ShmooCon 4 in Washington, D.C. The pair was able to successfully defeat two well-known packers, TeLock and Vmprotect, as well as a custom packer presented to them afterward by two members of the audience. Stripping Away Malware`s Armor
From around the Web
- Windows Vista Service Pack 2 Latest Release Schedule
- Vista SP2: What is inside?
- NetWitness releases free version of security software
- Three Reasons Why Users Won’t Buy Into Security
- Automated security testing & its limitations
- Google Wants to Preinstall Chrome Browser on PCs
- Mozilla warns of Firefox China add on
- Firefox No Longer an Automatic Defense Against Browser Drive Bys
- Google patches Chrome file stealing bug
- Apple plays catch up, adds anti fraud safeguard to Safari
- Researchers find vulnerability in Windows Vista
- How to Use Network Behavior Analysis Tools
- The insider security threat in IT and financial services
- Windows 7 security: An overall improvement?
- Windows 7 UAC could be less of a nag