Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-IDS
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: HIPS Comparative ?

from [Marc Maiffret] Network Security [Permanent Link]
Subject: RE: HIPS Comparative ?
Date: Tue, 4 Dec 2007 15:06:07 -0800 
A more HIPS specific review that is very recent:
http://searchsecurity.techtarget.com/magazineFeature/0,296894,sid14_gci1
280028,00.html

-Marc

-----Original Message-----
From: listbounce@securityfocus.com [mailto:listbounce@securityfocus.com]
On Behalf Of Stefano Zanero
Sent: Saturday, December 01, 2007 5:06 AM
To: Focus-Ids Mailing List
Subject: Re: HIPS Comparative ?

Albert R. Campa wrote:

SC mag did a product test on various HIPS agents. Also see if you can
get your hands on some Gartner documentation.
http://www.scmagazineus.com/Anti-malware-management-2007/GroupTest/31/


Am I the only one that finds the equation HIPS = anti-malware a bit
biased ?

Anti-malware is just a fraction of what an HIPS should do, and it's the
part which is similar to what antiviruses already do. In fact, many of
those products have little difference from your common antivirus suite.

An HID/PS on the other hand should be broader, encompassing also
detection of attack activities that have nothing to do with malware
being deployed in a drive-by fashion.

Stefano


------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it 
with real-world attacks from CORE IMPACT.
Go to
http://www.coresecurity.com/index.php5?module=Form&action=impact&campaig
n=intro_sfw 
to learn more.
------------------------------------------------------------------------



------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it 
with real-world attacks from CORE IMPACT.
Go to 
http://www.coresecurity.com/index.php5?module=Form&action=impact&campaign=intro_sfw
 
to learn more.
------------------------------------------------------------------------
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: IPS in the Enterprise UTM Firewall testing results, Joel M Snyder
Next by Date:  SonicWall, Jimmy Stewpot
Previous by Thread:  Re: HIPS Comparative ?, Stefano Zanero
Next by Thread:  Re: HIPS Comparative ?, Javier Reyna Padilla
Indexes:  [Date] [Thread] [Top] [All Lists]