Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Vuln-Dev
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[Full-disclosure] New Whitepaper "Software Misuse: from malicious action

from [Andrey Bayora] Network Security [Permanent Link]
Subject: [Full-disclosure] New Whitepaper "Software Misuse: from malicious actions to mind control"
Date: Wed, 27 Jul 2005 02:19:44 +0300 
Hello list,
I would like to introduce my new whitepaper "Software Misuse: from malicious
actions to mind control". The ideas for this paper come more than 2 years
ago. I wrote them down, and then when I saw new viruses using what I wrote
and think about - I start delete implemented ideas from my notes, the rest -
presented in this whitepaper. I believe that many of described issues
"waiting" for release by virus writers, therefore I decided to publish this
paper. In many cases due to very "sensitive" subject, I provide only the
general concept without the proof.
Any opinion or criticism highly appreciated, but remember - no security
through obscurity.

INTRODUCTION

The goal of this whitepaper is to show how dangerous could be a software
misuse, the problems of current malicious code defense systems and introduce
a new theoretical threats - NeuroWorm, Subliminal Virus and other.
One of the main ideas in this whitepaper is that antivirus software could
have serious problems to stop software that "behave" abnormally.
There are many new "names and definitions" in this whitepaper, if you like,
you can use them. It was just a part of the "fun" to write this whitepaper
and create some "crazy" names.

Here is the partial list of presented issues:
- ArchiVirus - malicious code in SFX archives.
- Antivirus programs detection evasion with commercial anti-cracking
software.
- An ultimate file infection engine from Microsoft?
- The Black Antivirus - antivirus program with signature definition file
against security tools.
- The Offline Metamorphic Engine - threats to generate unique malware for
every user.
- The NeuroWorm - using Artificial Intelligence in computer malware.
- Subliminal Virus - how computer virus can control or influence the human
mind.

The whitepaper can be found at http://www.securityelf.org in the Whitepapers
section.
I know, it is not perfect, but I will improve.

Regards,
Andrey Bayora.



_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [Full-disclosure] New Whitepaper "Software Misuse: from malicious actions to mind control", Andrey Bayora <=
Previous by Date:  [Full-disclosure] [USN-155-1] Mozilla vulnerabilities, Martin Pitt
Next by Date:  [Full-disclosure] [ISR] - Novell GroupWise Client Remote Buffer Overflow, Francisco Amato
Previous by Thread:  [Full-disclosure] [USN-155-1] Mozilla vulnerabilities, Martin Pitt
Next by Thread:  [Full-disclosure] [ISR] - Novell GroupWise Client Remote Buffer Overflow, Francisco Amato
Indexes:  [Date] [Thread] [Top] [All Lists]