Penetration Testing mailing list archives
Re: Malware URI list
From: AK <platsakos () gmail com>
Date: Mon, 14 Mar 2011 19:19:46 +0200
Hello everyone, EICAR.com is more of a file that you use to check if your scanner is working (e.g. in a web application binary upload form) than a file to check actual detection rate) can be mitigated somewhat by writing simple malware-like software yourself (nothing fancy) and then, once you have an executable, try a few packers on it, encode it etc. While admittedly this is not as thorough as using a huge list of recent malware, you will get a bird's-eye view about that AV do (and most importunately do not) detect. On 03/13/2011 07:11 AM, vedantamsekhar () gmail com wrote:
Eicar.com is good one, but i tnink almost all av scanners by default blcoks them, as it so well known. For evaluation of AV, we need to look for some thing which is not known to vendors and also safe to run on the system. Thanks, Sekhar Sent from my Nokia phone
------------------------------------------------------------------------ This list is sponsored by: Information Assurance Certification Review Board Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified. http://www.iacertification.org ------------------------------------------------------------------------
Current thread:
- Re: Malware URI list, (continued)
- Re: Malware URI list David Maciejak (Mar 11)
- Re: Malware URI list Hristiyan Lazarov (Mar 14)
- Re: Malware URI list navin1406 (Mar 10)
- Re: Malware URI list navin1406 (Mar 11)
- RE: Malware URI list Gurdeep dhilllon (Mar 11)
- Re: Malware URI list Matias Katz (Mar 11)
- Re: Malware URI list Sandeep Cheema (Mar 11)
- RE: Malware URI list vedantamsekhar () gmail com (Mar 14)
- Re: Malware URI list Todd Haverkos (Mar 14)
- Re: Malware URI list Daniel Crowley (Mar 14)
- Re: Malware URI list AK (Mar 14)