RFI Attacks

Suspected Attacks 462568

[Details]


Finding the Unknown – Detecting Emailed Malware Waves

In a previous post I discussed using the technique of watching for the transfer of executable files around the network as a method of intrusion detection. This is a great way of discovering machines that were attacked where IDS failed to detect the exploit(s) due to obfuscation. Another method I’d like to highlight is looking [...]

Share
June 29th, 2009 | Tags: , , , , , | Category: Intelligence, Intrusion Detection, Malware scripts and other formats | Leave a comment

Finding the unknown on your network

One of the things I constantly keep in mind is “how do I find what I don’t know about?”. An unknown threat is what will hurt you and your organization. So how does one find something they don’t know about? From an intrusion detection perspective, this can be quite easy. Everyone knows (or should know) [...]

Share
November 26th, 2008 | Tags: , , , | Category: Intelligence, Intrusion Detection, Malware Binaries (exe/dll) | Leave a comment