Download pptx - CIS 442: Chapter 2

Transcript
Page 1: CIS 442: Chapter 2

CIS 442: Chapter 2

Viruses

Page 2: CIS 442: Chapter 2

Malewares

• Maleware classifications and types• Viruses• Logical and time bombs• Trojan horses and backdoors• Worms• Spam• Spyware

Page 3: CIS 442: Chapter 2

Operating systems tasks

• Booting and resetting• Managing volumes and files• Managing executable programs and processes• Managing memory• Handling interrupts

Page 4: CIS 442: Chapter 2

Viruses

• Definition and history• Viruses for mainframe and PCs• Propagation or infection• Payload or damage• Trigger• Replication• Virus polymorphism

Page 5: CIS 442: Chapter 2

Virus writers

• Reasons for writing, using or distributing viruses

• General profile

Page 6: CIS 442: Chapter 2

Virus propagation

• From file to file and from computer to another.

• Looking for executable, and similar files• Memory resident viruses• Infected software, email attachement

Page 7: CIS 442: Chapter 2

Macro viruses

• Differences from typical viruses• Document files

Page 8: CIS 442: Chapter 2

Virus classification methods

• By Infection• By Damage• By trigger• By Platform

Page 9: CIS 442: Chapter 2

Classification

• File infector viruses• Shell viruses• Non-overwriting viruses• Overwriting viruses• Intrusive viruses• Boot sector viruses• Multipartitie viruses

Page 10: CIS 442: Chapter 2

• Memory resident viruses• BSI Boot sector viruses• Differences between BSI and file infectors• Bootstrap loader and virus hiding methods

Page 11: CIS 442: Chapter 2

File infector viruses infection methods

• Shell viruses• Overwriting• Non-overwriting• Intrusive• File attributes: Size, CRC(hash), MAC, code

inside, access permissions

Page 12: CIS 442: Chapter 2

Companion-multipartitie Viruses

• File association• DOS execution sequence (com, bat, exe).• Multi-File infector and BSI viruses: advantages

and challenges

Page 13: CIS 442: Chapter 2
Page 14: CIS 442: Chapter 2

Macro and Script Viruses• Macros programs, examples• Examples and characteristics of Macro Viruses• Protection against Macro viruses.

Page 15: CIS 442: Chapter 2

Infected images and acrobat

• Buffer overflow problems

Page 16: CIS 442: Chapter 2

Virus life cycle

• Signature• Infection• Damage• Trigger or Activation: Bombs

Page 17: CIS 442: Chapter 2

Virus Payloads

• Types and levels of payloads

Page 18: CIS 442: Chapter 2

Virus organization

• Infection marker• Infector• Trigger check• Manipulation

Page 19: CIS 442: Chapter 2

Virus naming

• Based on type• Based on creator• Macro viruses• Based on environment

Page 20: CIS 442: Chapter 2

Virus hiding methods

• Hiding methods• Stealth techniques

Page 21: CIS 442: Chapter 2

Interrupts and viruses

• Relation between interrupts and viruses – trigger and activation

• Trapdoors


Recommended

Info 442 chapter 2
Info 442 chapter 2 Science
Chapter 3 Kinetics of trans-cis isomerization ofshodhganga.inflibnet.ac.in/bitstream/10603/29500/13/13_chapter 3.pdf · Chapter 3 Kinetics of trans-cis isomerization of azobenzene
Chapter 3 Kinetics of trans-cis isomerization ofshodhganga.inflibnet.ac.in/bitstream/10603/29500/13/13_chapter 3.pdf · Chapter 3 Kinetics of trans-cis isomerization of azobenzene Documents
UNIVERSITY OF CYPRUS - ucy.ac.cy · PDF filecen cen cis cis cis cis cis cis cis cis cis cis cis cis cis cis cis cis 101 102 600 600 600 600 600 600 600 600 600 600 600 600 600 600
UNIVERSITY OF CYPRUS - ucy.ac.cy · PDF filecen cen cis cis cis cis cis cis cis cis cis cis cis cis cis cis cis cis 101 102 600 600 600 600 600 600 600 600 600 600 600 600 600 600 Documents
CIS 110 Chapter 1 Intro to Computers
CIS 110 Chapter 1 Intro to Computers Technology
TITLE 442, NEBRASKA ADMINISTRATIVE CODE, CHAPTER 5 …
TITLE 442, NEBRASKA ADMINISTRATIVE CODE, CHAPTER 5 … Documents
CIS 442: Chapter 5 Prevention and Defense. Understanding vulnerabilities Examples of vulnerabilities or weaknesses: User apathy Insufficient security
CIS 442: Chapter 5 Prevention and Defense. Understanding vulnerabilities Examples of vulnerabilities or weaknesses: User apathy Insufficient security Documents
Info 442 chapter 4
Info 442 chapter 4 Science
Structured Query Language Part I Chapter Three CIS 218
Structured Query Language Part I Chapter Three CIS 218 Documents
DSP-CIS Chapter-5: Filter Realization
DSP-CIS Chapter-5: Filter Realization Documents
Infectious Diseases Chapter 11.3: page 460-442 Chapter 12.1: page 492-496
Infectious Diseases Chapter 11.3: page 460-442 Chapter 12.1: page 492-496 Documents
CIS 325: Data Communications1 Chapter Seventeen Network Security
CIS 325: Data Communications1 Chapter Seventeen Network Security Documents
Chapter Section Revision - PennDOT Home 442...Chapter Section Revision Publication 442 - Specifications for Consultant Agreements for Project Development Services (2018 Revisions)
Chapter Section Revision - PennDOT Home 442...Chapter Section Revision Publication 442 - Specifications for Consultant Agreements for Project Development Services (2018 Revisions) Documents
Chapter 442 1999 EDITION Health Planning ADMINISTRATOR OF
Chapter 442 1999 EDITION Health Planning ADMINISTRATOR OF Documents
ADS Chapter 442 - The Workers’ Compensation … Partial Revision 2 ADS Chapter 442 Functional Series 400 – Personnel ADS Chapter 442 –The Workers’ Compensation Program POC
ADS Chapter 442 - The Workers’ Compensation … Partial Revision 2 ADS Chapter 442 Functional Series 400 – Personnel ADS Chapter 442 –The Workers’ Compensation Program POC Documents
NR 442 Chapter 1 Rev
NR 442 Chapter 1 Rev Documents
Relational Algebra Chapter 4 CIS 458 Sungchul Hong
Relational Algebra Chapter 4 CIS 458 Sungchul Hong Documents
Chem 442- Chapter One
Chem 442- Chapter One Documents
Chapter 22 Product Line Engineering Week 1 CIS 673
Chapter 22 Product Line Engineering Week 1 CIS 673 Documents