In a previous post I discussed using the technique of watching for the transfer of executable files around the network as a method of intrusion detection. This is a great way of discovering machines that were attacked where IDS failed to detect the exploit(s) due to obfuscation.
Another method I’d like to highlight is looking for [...]
|
|||||
|
|
|||||
|
Copyright © 2010 Andrew Martin - All Rights Reserved |
|||||