Category: Malware Analysis
06/11/07
09:22:32 am, by James Daugherty, 920 words
Categories: Malware Analysis, Systems Security Management
Malware Discovery with XP Tools – Part 2
In my last post, I showed how to use sigverif to identify questionable files. In this post, I will go over identifying potential threats by examining startup items, scheduled tasks, user accounts, and the windows hosts file. The goal so far, has been to… more »
05/31/07
11:02:15 pm, by James Daugherty, 456 words
Categories: Malware Analysis, Systems Security Management
Malware Discovery with XP Tools – Part 1
As I previously posted, I am going to show how to use built-in windows system tools to help identify malware on a computer. Although XP isn’t Microsoft’s newest operating system, it’s the most widely used version of the Microsoft Windows family. Having t… more »
05/22/07
Malware Discovery with XP Tools - Upcoming Series
I have a bad habit of picking up on computer conversations while out in the public. Sometimes I hear about the heroic business manager who made just one phone call, and IT who had not done anything in a month, fixed the problem in just three minutes. One… more »
05/03/07
McAfee Alerts on "Wedding Crasher" Site
While monitoring Cisco Security Agent logs for a client, I noticed that McAfee was sending JS/Crasher infection alerts to our CSA Management Center. The flagged files were in multiple cached HTML pages on an individual system. Naturally I was intereste… more »
04/26/07
12:54:12 am, by Larry Boggis, 59 words
Categories: Cisco Security Agent, Priveon News, Malware Analysis
Priveon Labs Publishes CSA Testing on MS ANI Vulnerability
CSA: CVE-2007-0038 - Microsoft Animated Cursor (ANI) Vulnerability
April 3rd, 2007 - Priveon Labs posts a new CSA Protection Series document detailing how the Cisco Security Agent (CSA), using default policies, can prevent against 0-Day attacks. The… more »
XML Feeds