Scribd Logo
Unggah

Selamat datang di Scribd!

  • Διάλεξη Ιομορφικό Λογισμικό PDF

    Diunggah oleh

    pa3geo8914
    29 tayangan48 halaman

    Judul Asli

    Διάλεξη Ιομορφικό Λογισμικό.pdf

    Hak Cipta

    © © All Rights Reserved

    Format Tersedia

    PDF, TXT atau baca online dari Scribd

    Apakah menurut Anda dokumen ini bermanfaat?

    Apakah konten ini tidak pantas?

    Laporkan Dokumen Ini

    Hak Cipta:

    © All Rights Reserved
    Unduh sebagai PDF, TXT atau baca online dari Scribd
    Tandai sebagai konten tidak pantas
    29 tayangan48 halaman

    Διάλεξη Ιομορφικό Λογισμικό PDF

    Diunggah oleh

    pa3geo8914

    Hak Cipta:

    © All Rights Reserved
    Unduh sebagai PDF, TXT atau baca online dari Scribd
    Tandai sebagai konten tidak pantas
    dari 48

    : ,

    ,

    .


    1.

    2.

    3.
    4. ()

    5.

    . .

    Trojan Horses

    Boot
    Infectors

    Browser
    Hijackers

    System
    Infectors

    Viruses

    Back Door

    Worms

    Port Scanners

    File
    Infectors

    Transient
    Viruses

    Resident
    Viruses

    Macro
    Viruses

    Polymorphic Viruses

    Shell
    Replacement
    Viruses

    Intrusive
    Overwriting
    Viruses

    Add On NonOverwriting
    Viruses

    Trojan Horse
    (Trojan Trojan Horse
    ),
    ,
    .
    Ken Thomson,
    1983, login UNIX
    .

    Trojans

    1) ()



    .

    2)


    ,
    .

    Trojans

    1)
    2)
    3)
    4)

    5)
    6)
    7)
    8)
    9)

    /.
    e-mail.

    antivirus
    DOS Attacks
    Proxy Zombies.

    1)
    2)
    3)
    4)

    OS Services
    Keygens & Cracks
    Road Apples
    e-mails &
    attachements
    5)

    websites.
    6) chat rooms
    (IRC, Java DCC).
    7) Port scanning.


    NetBUS
    Sub7
    Dolly
    Deep Throat
    Back Orifice
    Beast
    ---------------------------1) Keystroke
    Logging
    ().
    2) Screen Captures
    3) Program
    Launching
    4) File Browsing
    5) Shut Down
    6) Open/Close CD.
    7)
    .
    8) .
    9) PC.
    10) HDD Format.

    Fakeneflick
    GGTracker
    Nickispy
    ---------------------------1) Android.
    2)
    .
    3) SMS,
    MMS, e-mails

    .
    4)
    .
    5)


    .
    6)

    Blue Tooth.

    Find & Call


    Simply Find It
    --------------------------------------1) iOS
    Apple Store
    .
    2) .
    ,

    ,
    , backdoor
    .

    IP
    Port
    Scanning

    BT,

    utilities ( H).

    IP & Port Scanners


    IP
    (range),
    Server .


    client server.

    Trojan Horse / Back Door


    Remote Access Utilities
    :
    PC.
    .
    .
    / .
    .
    / .
    .
    (Format) .

    Dolly,
    Internet
    ( MODEM)

    Browser Hijackers -
    Browser Hijackers,
    ,
    (Browser) ( Explorer, Mozilla, Opera ).
    Browser Hijackers,
    Browser,
    , .

    Trojans, bundles
    .

    Hijackers

    1.
    2.
    3.
    4.
    5.
    6.
    7.
    8.

    OneWebSearch
    Conduit Toolbar
    CoolWebSearch
    Omiga-Plus
    Qvo6.com
    Qone8.com
    Snap.do
    Babylon Toolbar

    Hijackers

    1. Force Hits.
    2. Trojans.
    3.
    .
    4.
    ( spyware removals).

    ,
    ,
    .

    Babylon Toolbar,

    .

    Babylon
    Translation Software,
    bundle
    free downloads.

    browser
    search engine
    .

    2011,
    CNET
    www.download.com

    .

    CNET,
    Sean
    Murphy,
    .

    search engine
    .

    iExplorer,
    Mozilla, Safari Chrome.

    search engine
    .

    Ports,

    Network Worms
    Worms,


    .

    ,
    ( ,
    ),

    ,
    .
    Worms ,

    .

    Worms, OSI L2
    (Data Link Layer ),

    .

    Worms
    MyDoom. (W32.MyDoom@@mm).
    Windows.
    2004.
    andy; Im just doing my job, nothing personal, sorry
    payload 38.000.000 $,
    Internet 10%,
    Servers 50%, sites.
    Sobig.F
    2003 37.000.000$,
    mail servers
    internet gateways .
    Internet
    50%.

    10 .
    2003 ,
    .

    ILOVEYOU (Love-Letter).
    4/2/2000 50 .
    , 15 . $.
    attachment Love-Letter-For-You.TXT.VBS,
    .VBS .

    Melissa Worm
    David L. Smith.
    Smith, Worm,
    Melissa.
    Smith FBI 10
    ( 20 5.000$
    ).
    Melissa 20% .
    ,
    1,9 . $,
    Internet Servers.
    O Melissa VB Script Word.
    On Error Resume Next
    If System.PrivateProfileString("","HKEY_CURRENT_USER\Software\Microsoft\Office\9.0\Word\Security", "Level") <> ""
    Then
    CommandBars("Macro").Controls("Security...").Enabled = False
    System.PrivateProfileString("","HKEY_CURRENT_USER\Software\Microsoft\Office\9.0\Word\Security", "Level") = 1&
    Else
    CommandBars("Tools").Controls("Macro").Enabled = False
    Options.ConfirmConversions = (1 - 1): Options.VirusProtection = (1 - 1): Options.SaveNormalPrompt = (1 - 1)
    End If

    Melissa, Office
    Office VBA

    - Viruses
    ,

    "" .

    ,

    , .
    ,

    .
    , (Viruses)
    .

    antivirus.


    Viruses

    Boot
    Infectors

    System
    Infectors

    File
    Infectors

    Transient
    Viruses

    Resident
    Viruses

    Macro
    Viruses

    Polymorphic Viruses

    Shell
    Replacement
    Viruses

    Intrusive
    Overwriting
    Viruses

    Add On NonOverwriting
    Viruses

    (
    )
    .

    Boot Infectors
    (HD, CD, FD, USB Stick ..)


    Firmware , Boot Record, Boot Sector.
    Boot Record, .
    Boot Record, Boot
    Infector, Boot Record Virus.
    Boot Infectors, MBR (Master Boot
    Record) VBR (Volume Boot Record), ,
    .
    Boot Infector,
    Boot Record,
    ,
    (, , USB Sticks)
    .

    .

    (c) Brain
    Brain, 1986
    Farooq Alvi Boot Infector.
    DOS (Floppy Disks).
    7 kb RAM .
    (

    ).
    Welcome to the Dungeon
    , .
    Brain

    .
    Alvi,


    Brain NET ISP Brain
    Telecommunication Ltd.

    System Infectors
    System Infectors,
    .
    MSDOS.SYS IO.SYS, MS-DOS.
    System Infectors :

    COMMAND.COM, MSDOS.SYS IO.SYS, MS-DOS.


    ., NTLDR, KERNEL32 Windows (
    Windows\System32).
    .BAT, DOS, Windows
    . .INF Windows.
    Services .
    ActiveX.
    (.LIB, .DLL)
    Device Drivers.
    /kernel, /sbin, /boot /home UNIX.
    UNIX,
    ( LINUX).

    Folder Infectors
    Folder Infectors, System
    Infectors Boot Infectors,
    ,
    , (.).

    ( USB Sticks)
    ,
    ( Format).

    USB Stick
    autorun.inf
    Service atieclxx.exe

    ATI
    chipsets.


    Overwriting
    System
    Infectors.
    ,
    ATI Chipset,
    99% .

    csrss,

    .
    Services, owner,
    ,
    .

    File Infectors
    System Infectors, File Infectors,
    ,
    .
    File Infectors,
    .
    File Infectors :

    .EXE .COM
    .LIB .DLL
    .


    .

    Shell Replacement Viruses



    (Shell).
    , ,
    .

    ,

    (payload).

    ,
    ,
    .

    , .

    .

    Intrusive Overwriting Viruses


    ,
    (
    ), .
    ,
    ,
    .
    ,
    ( NOP NOOP ADD [BX+SI], AL
    0000).
    ,
    .
    Overwriting Viruses,

    , .
    antivirus,

    .

    Add On Non-Overwriting Viruses



    .

    ,
    .
    -.
    ,
    .

    ,
    .
    antivirus,

    .

    ,
    .


    Add On (Non-Overwriting) Virus
    Jump
    1


    Jump


    Add On Virus
    1.
    ,

    .
    2. Jump

    .
    3. Jump
    .
    4.

    .


    ( ),
    (

    ).
    Transient Viruses.
    .

    .

    , .

    Resident Viruses.
    ,
    .

    Video RAM,
    , services (
    owner ), (
    ).



    Trojan Horses

    Viruses

    PC, Mac, Linux, Android, iOS

    Worms

    , UNIX ( Internet)


    , MULTIUSER .
    SOFTWARE
    ()
    ROOT ACCESS

    o
    o /
    o
    o ,


    / /

    MACRO (JAVA, JAVA-SCRIPT, VB)
    C/C++,

    ASSEMBLY,

    *., *.COM
    *.DOC, *.XLS, *.HTML, *.MDB, *.PPT
    LIBRARYS COMPILERS (*.LIB, *.DLL)
    DOS (*.) (ANSI BOMBS)

    e-MAILS ATACHMENTS

    !!! SOS !!!





    , ,
    , .


    .
    S/W
    HOUSE .

    DOWNLOAD O WEB-SITE.

    .

    SHAREWARE .
    .


    HARDWARE
    SOFTWARE




    (WARM BOOTS)
    ( ,
    VIDEO RAM)

    ANTIVIRUS
    Antivirus ,
    , ,
    .
    antivirus , antivirus,

    Trojans, Worms, Backdoors, Browser Hijackers
    .

    ,
    (File Infectors), (Worms ).
    antivirus :

    NOD 32

    Avast!

    Norton Antivirus

    AVG

    F-Secure

    Kaspersky

    Panda Antivirus

    Bit Defender

    McAffee


    Signature Based Detection
    ,
    .
    antivirus ,

    .
    .
    antivirus
    ,
    .
    ,

    , antivirus.
    .
    ,
    ,
    ( a/v).

    Freezer

    Blaster

    Heuristic scanning


    ( ).

    ,
    .
    ,
    , ,
    ,
    .
    antivirus ,
    .

    Heuristic Scanning Vundo Trojan,
    popups , Google
    Facebook,
    .

    ANTIVIRUS

    ANTIVIRUS SOFTWARE
    INTEGRITY
    CHECKING

    MEMMORY
    RESIDENT A/V


    SIGNATURE
    CHECKING

    HEURISTIC
    SCANNING

    Antivirus
    antivirus ,
    ( ).
    antivirus,
    Shell Overwriting Viruses
    Vault.

    .
    non-Overwriting
    Viruses, 100% .
    ,
    .

    , ROM-Flash
    BIOS,
    CMOS. antivirus,
    ,
    .

    Antivirus
    antivirus
    .
    ,
    , antivirus,
    ,
    .

    , ,
    antivirus,

    .

    False Positives
    antivirus
    ,
    ,

    .
    keygens cracks
    (
    ).
    : cracks & keygens
    ( Trojans).

    (Format)
    (
    ) , Format.
    (Full) (Quick) Format,
    .


    A/V S/W

    :
    1.

    2.

    A/V WRITE PROTECTED DISK

    3.

    HEURISTIC
    SCANING.
    INTEGRITY CHECKING

    4.

    BACKUP

    5.

    MEMORY RESIDENT SCANNER

    6.


    A/V S/W. ( ,
    )

    7.

    A/V S/W (

    2 ).


    READ-ONLY
    SERVER.
    LOGIN SCRIPTS.
    .
    .

    EPROM CHIPS.

    FIREWALLS .
    ADMINISTRATOR
    .
    SUPERVISORY
    PRIVILEDGES, .

    PASSWORDS.

    INTERNET
    ,

    JAVA, JAVA SCRIPT, VB SCRIPT



    e-MAIL

    BACK DOOR

    INTERNET
    O 1.000.000!!!

    Anda mungkin juga menyukai