[转载]Anti-Virus in the Wild

信息来源：邪恶八进制信息安全团队（www.eviloctal.com）

This paper has two components; the first portion goes over the configuration and setup of my honeypot network. It is not written as an exact schematic on how to deploy it within your environment; rather it is listed in fairly generic terms, giving you a framework to use, rather than a blueprint. The second component compares today’s pattern-based detection to the latest anti-virus technologies being developed by industry leaders. One part is a test I composed using the most popular portable executable (PE) packers available today and 13 major anti-virus products. The results will prove that something more than pattern-based detection is needed to handle evolving malware threats.