« Behold….Mancaves!
US Cyberwarfare Prep Includes Offense »

Analyzing a Hack from A to Z (Part 4)

We saw in part three of this article series that Snort logged pretty much all of the activity that happened over the course of the webserver being exploited by the hacker. That said, it did miss the usage of a key program that was transferred there by the hacker. Much as I mentioned in part three is that an IDS is not a device which guarantees network security. An IDS is at its heart a pattern matching program. Those patterns are the signatures that have been written for it, and continue to get updated over time. While IDS vendors make a pretty decent attempt at generating a fairly broad set of signatures, there is still room for improvement.

Source: Windows Security

This entry was posted on Saturday, April 5th, 2008 at 4:55 pm and is filed under Attack Vector.

No comments yet. Be the first.

Leave a reply

You must be logged in to post a comment.

  • RSS Windows Security

  • RSS Wired Security

  • RSS The Register - Security

  • RSS Security Focus

  • RSS CSO

  • RSS Sans

  • Archives

  • Bloglisting.net - The internets fastest growing blog directory
  • My Zimbio

  • RSS Linux Security

  • Event Calendar

    « Oct iCalendar Dec »
    November 2008
    M T W T F S S
     12
    3456789
    10111213141516
    17181920212223
    24252627282930

  • VincentArnold.com

  • Categories

    Annoucement Attack Vector Book Education Forensics Gadgets Gaming General Government InfoSec Information Security Information Systems Information Technology Intellectual Property iPhone 3G Just because it's cool Law Methodologies Metrics Military Mobile Tech Movies News Penetration Testing Politics Privacy Scams Sci-Fi Security Breach Society Sports Technology Tools Travel Uncategorized World News