The Art of Computer Virus Research and Defense

摘要: "Of all the computer-related books I've read recently, this one influenced my thoughts about security most. There is very little trustworthy information computer viruses. Peter Szor of best virus analysts in world and has perfect credentials to write book."-Halvar Flake, Reverse Engineer, SABRE Security GmbHSymantec's chief antivirus researcher written definitive guide contemporary threats, defense techniques, analysis tools. Unlike most on viruses, The Art Computer Virus Research Defense a reference strictly for white hats: IT professionals responsible protecting their organizations against malware. systematically covers everything you need know, including behavior classification, protection strategies, worm-blocking much more.Szor presents state-of-the-art both malware protection, providing full technical detail that handle increasingly complex attacks. Along way, he provides extensive code metamorphism other emerging so can anticipate prepare future threats.Szor also offers thorough practical primer ever published-addressing from creating your own personal laboratory automating process. This book's coverage includes Discovering how malicious attacks variety platforms Classifying strategies infection, in-memory operation, self-protection, payload delivery, exploitation, more Identifying responding obfuscation threats: encrypted, polymorphic, metamorphic Mastering empirical methods analyzing code-and what do with learn Reverse-engineering disassemblers, debuggers, emulators, virtual machines Implementing defenses: scanning, emulation, disinfection, inoculation, integrity checking, sandboxing, honeypots, blocking, Using worm host-based intrusion prevention, network-level © Copyright Pearson Education. All rights reserved.