VB2011 One interesting presentation

Discussion in 'other anti-virus software' started by skokospa, Oct 13, 2011.

Thread Status:
Not open for further replies.
  1. skokospa

    skokospa Registered Member

    Joined:
    Apr 1, 2009
    Posts:
    177
    Location:
    Srbija
    what do you think about this?

    -http://www.virusbtn.com/pdf/conference_slides/2011/Harley-Bridwell-VB2011.pdf-

    and a very good analysis is performed for modern rootkits

    -http://www.virusbtn.com/pdf/conference_slides/2011/Rodionov-Matrosov-VB2011.pdf-
     
    Last edited: Oct 13, 2011
  2. Cudni

    Cudni Global Moderator

    Joined:
    May 24, 2009
    Posts:
    6,956
    Location:
    Somethingshire
    it would have been interesting to attend in person and see them talk. Valid points raised of course
     
  3. skokospa

    skokospa Registered Member

    Joined:
    Apr 1, 2009
    Posts:
    177
    Location:
    Srbija
    it would be a lot of questions...
     
  4. Brandonn2010

    Brandonn2010 Registered Member

    Joined:
    Jan 10, 2011
    Posts:
    1,849
    Now maybe Microsoft will wake up and realize PatchGuard isn't a silver bullet and they can make it so Ilya can make a 64-bit Defensewall!
     
  5. Stefan Kurtzhals

    Stefan Kurtzhals AV Expert

    Joined:
    Sep 30, 2003
    Posts:
    701
    I found the presentation from Igor Muttik interesting.
    But their number of characteristics is really low...

    Also, a VB conference without Vesselin Bontchev is boring! ;)
     
  6. skokospa

    skokospa Registered Member

    Joined:
    Apr 1, 2009
    Posts:
    177
    Location:
    Srbija
    it is interesting that the sandbox and 64 bit systems easily bypassed.
    I agree that a few samples but the explanation is very interesting.
     
  7. i_g

    i_g Registered Member

    Joined:
    Aug 30, 2006
    Posts:
    133
    I'd certainly agree with that... though Nick Fitzgerald seemed to be trying to fill the void a tiny bit at least :D
     
Thread Status:
Not open for further replies.