IDS mailing list archives
RE: A Neural Network to detect polymorphic shellcodes
From: "Mina G" <mimanium () hotmail com>
Date: Wed, 26 Jul 2006 08:19:41 +0000
Hi,
And of course check Fermin Serna work (nidsfindshellcode) you'll find it useful.http://www.ngsec.com/ngresearch/ngtools/?lang=en
The problem with this engine and with others such as Fnord is the false positive rate. They tend to recognize anything as a shellcode.
I am looking for a way to decrease the rate of false posetives of such algorithms.
Regards, _________________________________________________________________MSN Messenger: appels gratuits de PC à PC ! http://www.msn.fr/msger/default.asp
------------------------------------------------------------------------ Test Your IDS Is your IDS deployed correctly?Find out quickly and easily by testing it with real-world attacks from CORE IMPACT. Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 to learn more.
------------------------------------------------------------------------
Current thread:
- A Neural Network to detect polymorphic shellcodes mimanium (Jul 24)
- <Possible follow-ups>
- RE: A Neural Network to detect polymorphic shellcodes Víctor H . García Pichardo (Jul 25)
- Re: A Neural Network to detect polymorphic shellcodes Dragos Ruiu (Jul 26)
- Re: A Neural Network to detect polymorphic shellcodes Mina G (Jul 26)
- RE: A Neural Network to detect polymorphic shellcodes Mina G (Jul 26)
- Re: A Neural Network to detect polymorphic shellcodes Dragos Ruiu (Jul 26)