Second coder wins
I subscribe to the school of thought that says the second coder always wins. By that, I mean that after you write your "undetectable" rootkit, someone will analyze it, and find a way to detect it. If your malware kills all the protection mechanisms on a victim, then the AV vendors will recode their apps so that the technique you used to kill them no longer works. IDS vendors will find a way to detect your IDS evasion, and so on.
Exceptions: Crypto might be an exception, though I've been surprised by the number of crypto algorithms that have fallen in recent years.
skip to main |
skip to sidebar
Followers
Full RSS FeedContributors
Labels
- books (5)
- cloudbaiting (1)
- egoblogging (22)
- IT (1)
- locks (1)
- malware (3)
- OS X sucks (7)
- pneumopunk (2)
- RE (6)
- review (1)
- secphil (30)
- security (9)
- spare brain (5)
- stories (10)
- v12n (2)
- work (6)
No comments:
Post a Comment