Security Basics mailing list archives
Re: Web Malware Protection
From: Todd Haverkos <infosec () haverkos com>
Date: Mon, 12 Mar 2012 14:30:13 -0500
cnuddep () rogers com writes:
Hello All, I'm wondering if anyone has any experience with the FireEye Web Malware Protection System, comments, criticisms etc.
If you talk to competitors like Damballa, they'll make arguments about 50% or more of modern botnets are VM aware, and won't run in virtualized environments, and claiming by extension, that virtualization-based analysis platforms like fireeye would not see this behavior on such malware, whereas their approach using traffic analysis, and [things I forget at the moment] would. I'd take it all with a grain of salt and would do a proof of concept first of course, but it is one criticism path to bark down. Best Regards, -- Todd Haverkos, LPT MsCompE http://haverkos.com/ ------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1 ------------------------------------------------------------------------
Current thread:
- Web Malware Protection cnuddep (Mar 07)
- Re: Web Malware Protection Todd Haverkos (Mar 15)