Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Malware URI list

From: AK <platsakos () gmail com>
Date: Mon, 14 Mar 2011 19:19:46 +0200
Hello everyone,
EICAR.com is more of a file that you use to check if your scanner is
working (e.g. in a web application binary upload form) than a file to
check actual detection rate) can be mitigated somewhat by writing simple
malware-like software yourself (nothing fancy) and then, once you have
an executable, try a few packers on it, encode it etc. While admittedly
this is not as thorough as using a huge list of recent malware, you will
get a bird's-eye view about that AV do (and most importunately do not)
detect.

On 03/13/2011 07:11 AM, vedantamsekhar () gmail com wrote:

Eicar.com is good one, but i tnink almost all av scanners by default blcoks them, as it so well known.
For evaluation of AV, we need to look for some thing which is not known to vendors and also safe to run on the system.

Thanks,
Sekhar

Sent from my Nokia phone


------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT 
and CEPT certs require a full practical examination in order to become certified. 

http://www.iacertification.org
------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: