Lecture 16: Anti-Malware Programs

Date: October 25, 2013
Homework due: Nov. 1 at 5:00pm
Midterm: Nov. 4 in class
  1. Midterm: questions, review
  2. Review of types of malware
    1. Trojan horses
    2. Computer viruses
      1. Stealth
      2. Encrypted
      3. Polymorphic
      4. Metamorphic
    3. Computer worms
    4. Bacteria, rabbits
  3. Signature detection
    1. What a signature is: hash, patterns
    2. How to look for it
    3. When to look for it: at boot time, on file open, at execution
    4. Scanning disks
  4. Behavioral analysis
    1. Execute in contained environment
    2. Simulate execution
You can also obtain a PDF version of this. Version of November 5, 2013 at 7:49PM