Description: In this opportunity, we disccuss Evasion attacks expoliting file-parsing vulnerabilities in antivirus products.
Reference:
http://seclists.org/bugtraq/2012/Mar/88?utm_source=twitterfeed&utm_medium=twitter
http://www.ieee-security.org/TC/SP2012/
Leave your comments please
thanks
Tags: speakup ,
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.
Thanks for the share my friend!
Its really ironical - AV products are supposed to be the "Gods of File Parsing" as after all, this is their bread and butter. I can imagine if they were all falling prey to a some "polymorphic encryptor" which made their life hell, but looking at the kind of basic things they are breaking up on, its laughable!
I will point people to this, the next time I hear someone say "I have an AV installed, I am safe" :)
I find it really amusing that so many of these are tar based. Specifically if FOSS tools extract the archives without issue.
This is some very cool stuff.
Yes,It is!
hi comunity cool video, can anyone tellme some tutorial about the way to change this bytes mentioned in the video?