Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Virus
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re[2]: Playing with Viruses on windows

from [Matthew Leeds] Network Security [Permanent Link]
Subject: Re[2]: Playing with Viruses on windows
Date: Thu, 12 Aug 2004 14:24:28 -0700 
Might try CoreRestore, a hardware solution, rather than VMware. Runs about 
$150US.

Their PR says,

Now, recovering from unauthorized or unintentional operating system or 
application changes is as quick and simple as a reboot. CoreRESTORE provides 
critical data security at the hardware level by providing an unparalleled 
protected environment that enables rapid recovery of OS, critical configuration 
files and principal applications caused by viruses, application corruption and 
user error. 

This functionality is made possible by CoreRestore's off motherboard 
microprocessor which redirects all data changes, whether malicious or 
accidental, to a temporary working area that is able to be wiped clean with a 
simple reboot. Mission-critical data such as operating systems, sensitive or 
proprietary applications, complex configurations and static digital data sets 
are retained in a protected area, secure from unauthorized modification.

www.coreprotect.com

----------
---Matthew
*********** REPLY SEPARATOR  ***********

On 8/12/2004 at 4:12 PM Pete Simpson wrote:


Nick FitzGerald wrote:


And, of course, dynamic black-box analysis that such a setup as this 
affords can be insufficient.  What if the program you are trying to 
analyse detects it is running under VMWare and simply exits, 
or runs a 
"harmless" (or otherwise different) code branch than it runs when not 
in a VM??  


From 29A zine #7
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Playing with Viruses on windows, cyclone dude
Next by Date:  Bagle Worm Hidden in System Restore, David Michael
Previous by Thread:  RE: Playing with Viruses on windows, Pete Simpson
Next by Thread:  Microsoft mydoom removal tool via SUS, Dan Denton
Indexes:  [Date] [Thread] [Top] [All Lists]