Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Testing Antivirus Engines To determine their ef...

Avatar for Jameel Haffejee Jameel Haffejee
August 14, 2014
Technology
0
120

Testing Antivirus Engines To determine their effectiveness as a security layer

Avatar for Jameel Haffejee

Jameel Haffejee

August 14, 2014
Tweet

More Decks by Jameel Haffejee

See All by Jameel Haffejee
Mac OS Sandboxing
Avatar for Jameel Haffejee rc1140
2
160
Powershell - What every haXor needs to know
Avatar for Jameel Haffejee rc1140
1
99

Other Decks in Technology

See All in Technology
KubeCon + CloudNativeCon Japan 2025 Recap Opening & Choose Your Own Adventureシリーズまとめ
Avatar for mm-matsuda mmmatsuda
0
220
Tokyo_reInforce_2025_recap_iam_access_analyzer
Avatar for h-ashisan hiashisan
0
110
標準技術と独自システムで作る「つらくない」SaaS アカウント管理 / Effortless SaaS Account Management with Standard Technologies & Custom Systems
Avatar for Yuya Takeyama yuyatakeyama
3
1.3k
「Chatwork」の認証基盤の移行とログ活用によるプロダクト改善
Avatar for kubell kubell_hr
1
220
LangSmith×Webhook連携で実現するプロンプトドリブンCI/CD
Avatar for sergicalsix sergicalsix
1
130
BrainPadプログラミングコンテスト記念LT会2025_社内イベント&問題解説
Avatar for BrainPad brainpadpr
1
170
AIとともに進化するエンジニアリング / Engineering-Evolving-with-AI_final.pdf
Avatar for LINEヤフーTech (LY Corporation Tech) lycorptech_jp
PRO
0
120
TechLION vol.41~MySQLユーザ会のほうから来ました / techlion41_mysql
Avatar for sakaik sakaik
0
200
Node-RED × MCP 勉強会 vol.1
Avatar for 1ft-seabass 1ftseabass
PRO
0
170
Yamla: Rustでつくるリアルタイム性を追求した機械学習基盤 / Yamla: A Rust-Based Machine Learning Platform Pursuing Real-Time Capabilities
Avatar for LINEヤフーTech (LY Corporation Tech) lycorptech_jp
PRO
4
150
Snowflake Summit 2025全体振り返り / Snowflake Summit 2025 Overall Review
Avatar for k.muguruma mtpooh
2
420
Microsoft Build 2025 技術/製品動向 for Microsoft Startup Tech Community
Avatar for Toru Makabe torumakabe
2
320

Featured

See All Featured
"I'm Feeling Lucky" - Building Great Search Experiences for Today's Users (#IAC19)
Avatar for Dan Newman danielanewman
229
22k
Put a Button on it: Removing Barriers to Going Fast.
Avatar for kastner kastner
60
3.9k
Why Our Code Smells
Avatar for Brandon Keepers bkeepers
PRO
337
57k
Fight the Zombie Pattern Library - RWD Summit 2016
Avatar for Marcelo Somers marcelosomers
233
17k
A Modern Web Designer's Workflow
Avatar for Chris Coyier chriscoyier
694
190k
Creating an realtime collaboration tool: Agile Flush - .NET Oxford
Avatar for Marc Duiker marcduiker
30
2.1k
GraphQLとの向き合い方2022年版
Avatar for Yosuke Kurami quramy
49
14k
Embracing the Ebb and Flow
Avatar for Simon Collison colly
86
4.7k
Adopting Sorbet at Scale
Avatar for Ufuk Kayserilioglu ufuk
77
9.4k
Six Lessons from altMBA
Avatar for Skipper Chong Warson skipperchong
28
3.9k
Building a Modern Day 
E-commerce SEO Strategy
Avatar for Aleyda Solis aleyda
42
7.4k
StorybookのUI Testing Handbookを読んだ
Avatar for Shingo Yamazaki zakiyama
30
5.8k

Transcript

  1. 1 Jameel Haffejee Rhodes University

  2. 2

  3. 3

  4. 4

  5. 5

  6. 6

  7. Attributes of an effective security layer Single Area Of Responsibility

    Fails Closed 7

  8. 8

  9. 9

  10. 10

  11. 11

  12. 12 Select Baseline Application Apply Evasion to selected baseline Scan

    with Antivirus Application Record Results

  13. 13

  14. 14

  15. 15

  16. 16

  17. 17

  18. 18

  19. 19 Unpacked binary Packed using malware packer Final Packed Binary

    On execution unpacks itself

  20. 20 Unpacked Binary Encrypted using encryption of choice Final Encrypted

    Binary On execution , decrypts itself and runs

  21. 21

  22. 22

  23. 23

  24. 24

  25. 25

  26. 26

  27. 27 Jameel Haffejee [email protected]