IDS mailing list archives
Re: IDS and Spywares
From: Eric Grejda <eric.grejda () sunrocket com>
Date: Mon, 10 Oct 2005 09:41:52 -0400
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Andrew Plato wrote: | A lot of the commercial ones do. TippingPoint has quite a few spyware | signatures. ISS has some. Don't know about Symantec or Cisco. | | Some AV will detect spyware, but not all. And even then, AV tends not to | be very good at blocking communication of already installed spyware. The Bleeding Snort ruleset (http://www.bleedingsnort.com/) detects quite a few spyware agents, in my experience. Speaking for myself and not my employers, as always. - -- Eric Grejda System Administrator, Sunrocket - http://www.sunrocket.com/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.7 (GNU/Linux) iD8DBQFDSm+eHJJGEDZR+J8RAnKhAJ9elxllcXTX//bhnwg5Yk0iqvRaAwCfTPGM uS82zf7pE5/UDJgDTUqbn/s= =K/gh -----END PGP SIGNATURE----- ------------------------------------------------------------------------ Test Your IDS Is your IDS deployed correctly?Find out quickly and easily by testing it with real-world attacks from CORE IMPACT. Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 to learn more.
------------------------------------------------------------------------
Current thread:
- IDS and Spywares neelabhsharma1 (Oct 07)
- Re: IDS and Spywares Gadi Evron (Oct 07)
- Re: IDS and Spywares Dhruv Soi (Oct 11)
- Re: IDS and Spywares Jay Archibald (Oct 12)
- Re: IDS and Spywares Tim Holman (Oct 14)
- <Possible follow-ups>
- RE: IDS and Spywares Andrew Plato (Oct 07)
- Re: IDS and Spywares Eric Grejda (Oct 11)
- RE: IDS and Spywares Desai, Deepen (Oct 11)
- Re: IDS and Spywares barcajax (Oct 11)
- Cisco IDS 4250 vs Sourcefire IS3000 + RNA Sensor Jonathan Gauntt (Oct 12)
- Re: Cisco IDS 4250 vs Sourcefire IS3000 + RNA Sensor Tim Holman (Oct 14)
- Re: Cisco IDS 4250 vs Sourcefire IS3000 + RNA Sensor byte_jump (Oct 18)
- Re: Cisco IDS 4250 vs Sourcefire IS3000 + RNA Sensor Frank Knobbe (Oct 18)
- Re: Cisco IDS 4250 vs Sourcefire IS3000 + RNA Sensor Jason (Oct 18)
- Re: Cisco IDS 4250 vs Sourcefire IS3000 + RNA Sensor Jason Haar (Oct 18)
- Re: Cisco IDS 4250 vs Sourcefire IS3000 + RNA Sensor Joel Esler (Oct 19)
- Re: Cisco IDS 4250 vs Sourcefire IS3000 + RNA Sensor Teemu Schaabl (Oct 18)
- Cisco IDS 4250 vs Sourcefire IS3000 + RNA Sensor Jonathan Gauntt (Oct 12)