Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Virus
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Extracting signature snippets from AV databases

from [Kenneth Bechtel] Network Security [Permanent Link]
Subject: Re: Extracting signature snippets from AV databases
Date: Wed, 10 May 2006 14:51:21 -0400 
On Wednesday 10 May 2006 01:02 pm, Bill Stout wrote:

What I'm trying to figure out is how to 'smoke test' new builds, and to
ethically and fully demonstrate (to the CEO, to outsiders) that the
protection works.  We're in alpha test, and beta is approaching fast.


Easily done, and I have done this many times.  Take the Results from the fore 
mentioned independent test organizations, then run a scan with SpyCAR and 
EICAR, showing that they were detected.  Then File the independent tests, and 
your logs, this will show any C level executive, first you did due diligence 
researching existing products, second you chose a product that withstood 
independent review, and finally the detection of the test files on your image 
shows it properly installed and functioning.  This also impresses auditors, 
should you be externally audited.

-- 
Kenneth L. Bechtel, II
Team Anti-Virus
Phone - 717-579-9083                      | WildList Reporter
P.O. Box 635, Palmyra, PA 17078           | Founding member AVIEN
E-mail - kbechtel@teamanti-virus.org      | Member AVAR
I can't be an impostor - I don't know what I'm doing!
PGP Footprint: 969E 2A27 3042 EE52 AEFB  6FF0 2711 9467 D38C 5C0F
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: Extracting signature snippets from AV databases, Bill Stout
Next by Date:  RE: Extracting signature snippets from AV databases, Clemens, Dan
Previous by Thread:  RE: Extracting signature snippets from AV databases, Bill Stout
Next by Thread:  RE: Extracting signature snippets from AV databases, Nick FitzGerald
Indexes:  [Date] [Thread] [Top] [All Lists]