The Art of Computer Virus Research and Defense

The Art of Computer Virus Research and Defense

Peter G. Viscarola and W. Anthony Mason, “Windows NT Device Driver Development,” MachMillan Technical Publishing, 1998. ISBN: 1578700582. ... 10. Peter Szor, “Beast Regards,” Virus Bulletin, June 1999. 11. Peter Szor, “Happy Gets Lucky?

Author: Peter Szor

Publisher: Pearson Education

ISBN: 9780672333903

Category: Computers

Page: 744

View: 541

Symantec's chief antivirus researcher has written the definitive guide to contemporary virus threats, defense techniques, and analysis tools. Unlike most books on computer viruses, The Art of Computer Virus Research and Defense is a reference written strictly for white hats: IT and security professionals responsible for protecting their organizations against malware. Peter Szor systematically covers everything you need to know, including virus behavior and classification, protection strategies, antivirus and worm-blocking techniques, and much more. Szor presents the state-of-the-art in both malware and protection, providing the full technical detail that professionals need to handle increasingly complex attacks. Along the way, he provides extensive information on code metamorphism and other emerging techniques, so you can anticipate and prepare for future threats. Szor also offers the most thorough and practical primer on virus analysis ever published—addressing everything from creating your own personal laboratory to automating the analysis process. This book's coverage includes Discovering how malicious code attacks on a variety of platforms Classifying malware strategies for infection, in-memory operation, self-protection, payload delivery, exploitation, and more Identifying and responding to code obfuscation threats: encrypted, polymorphic, and metamorphic Mastering empirical methods for analyzing malicious code—and what to do with what you learn Reverse-engineering malicious code with disassemblers, debuggers, emulators, and virtual machines Implementing technical defenses: scanning, code emulation, disinfection, inoculation, integrity checking, sandboxing, honeypots, behavior blocking, and much more Using worm blocking, host-based intrusion prevention, and network-level defense strategies
Categories: Computers

Windows NT Device Driver Development

Windows NT Device Driver Development

Peter G. Viscarola, W. Anthony Mason. R programs debugging , copy - on - write , 59-61 multiple operating system emulation ( Windows NT ) , 14-15 processes , 10 propagating driver execution , 458-460 Common Buffer DMA devices ...

Author: Peter G. Viscarola

Publisher: New Riders Pub

ISBN: UOM:39015050118739

Category: Computers

Page: 684

View: 712

An exhaustive technical manual outlines the Windows NT concepts related to drivers; shows how to develop the best drivers for particular applications; covers the I/O Subsystem and implementation of standard kernel mode drivers; and more. Original. (Intermediate).
Categories: Computers