Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Information-Security-News
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[ISN] Symantec bites the hand that feeds..

from [InfoSec News] Network Security [Permanent Link]
Subject: [ISN] Symantec bites the hand that feeds..
Date: Wed, 7 Dec 2005 00:17:54 -0600 (CST) 
http://www.osvdb.org/blog/?p=70

December 6th, 2005

Just over ten years ago (95-09-15) *Hobbit* wrote a little tool called 
netcat (aka nc), swiftly dubbed the "TCP/IP Swiss Army knife". 
*Hobbit* was affiliated with the l0pht, which was later purchased by 
@stake, which was later purchased by Symantec. At some point (circa 
1998), Weld Pond ported the netcat utility to Windows. Weld was an 
original member of the l0pht and later the Director of Research and 
Development with @stake. Weld's version was distributed at @stake for 
some time. Suffice it to say, the l0pht, @stake and its 
members/employees supported netcat's use and distribution. 

Jump forward to today, and Symantec now classifies netcat on a system 
as a High Risk Impact. As aj reznor asked, "is that to say that SYM 
bought a company known then for offering naughty things?" Let us also 
remember that Symantec owns SecurityFocus which conveniently offers 
the tool in their tool repository.

Also amusing are Symantec's "technical details" for this "hacker 
tool":

  Hacktool.NetCat arrives as a tool commonly carried by malicious 
  components and dropped on the compromised computer for remote 
  exploitation.

  When Hacktool.NetCat is executed, it performs the following actions:

  1. Transmits data across network connections.

Yes, there is no number two on the list. Hopefully Symantec will have 
the foresight to classify TCP/IP stacks as "Hacktool.TCPIP" and label 
it a "High Risk Impact" if found on a system. 



_________________________________________
Earn your Master's degree in Information Security ONLINE
www.msia.norwich.edu/csi
Study IA management practices and the latest infosec issues.
Norwich University is an NSA Center of Excellence.
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [ISN] Symantec bites the hand that feeds.., InfoSec News <=
Previous by Date:  [ISN] Hacker posts image on Foreign Office website, InfoSec News
Next by Date:  [ISN] FBI rules out cyber-attacks, InfoSec News
Previous by Thread:  [ISN] Hacker posts image on Foreign Office website, InfoSec News
Next by Thread:  [ISN] FBI rules out cyber-attacks, InfoSec News
Indexes:  [Date] [Thread] [Top] [All Lists]