Re: Bootable vuln CD for Windows

[Ross Nelson <coutcin () spydermania com>]

If you have a copy of Norton AV lying around, stick the CD in.  I believe
that'll let you scan from the CD.  However, I'm not sure about how to use
updated files.

You could always go with what my second attempt would be: find a way to
burn a running copy of Linux onto a CD (not via ISO, but burnable from any
OS) and get Clam AV (sorry, I don't have the URL offhand) and put it all
on a CD-RW.  Then you can update the defs.  However, booting a copy of
*nix over the network would probably be a lot easier.

Ross

On Wed, 30 Oct 2002, Alexandros Papadopoulos wrote:

> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Dear all.
>
> I'm looking for a way to scan existing Windows XP installations for
> trojans, viruses etc. The closest match to my needs seems to be Nessus,
> but I have the following reservation:
>
> Since the client has to be installed on the running Windows system, it
> shouldn't be too hard to fool by some pre-existing trojan. I was
> therefore wondering, if you know any way of running such a
> vulnerability scanner from a bootable CD, thus making sure that all
> benchmarks start from a clean system and results can be trusted.
>
> Thanks
>
> - -A
> - --
> http://andrew.cmu.edu/~apapadop/pub_key.asc
> 3DAD 8435 DB52 F17B 640F  D78C 8260 0CC1 0B75 8265
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.2.1 (GNU/Linux)
>
> iD8DBQE9wDurgmAMwQt1gmURAo0wAJ9wzdFKbQwjnm3WEy7RendqltmubgCfUMCO
> Zd7EXZoDrSrHBBoDh+LgDPY=
> =wMOG
> -----END PGP SIGNATURE-----