邪恶八进制信息安全团队技术讨论组 » 专题安全方向{ Security Research Papers } » 反病毒[ Antivirus ] » [转载]Enabling Worm and Malware Investigation Using Virtualization [查看完整版本]

EvilOctal 2005-11-15 03:49

[转载]Enabling Worm and Malware Investigation Using Virtualization

信息来源：[url]http://www.cs.purdue.edu/homes/jiangx/collapsar/[/url]

A short but interesting set of slides that look at the Collapsar architecture from the Purdue CS research groups. The slide deck, Enabling Worm and Malware Investigation Using Virtualization, by Dongyan Xu, Xuxian Jiang, looks at measuring worm activity and studies several worms, including a couple of older Linux worms, and looks at the targeting functions. Quite neat, even without much text around them.

这是个PPT

查看完整版本: [转载]Enabling Worm and Malware Investigation Using Virtualization

© 1999-2008 EvilOctal Security Team