Sniff'em™ Research Section
Generic Network Intrusion Detection fingerprints
• Sniff'em™ Worm fingerprints
by Zoller Thierry
A brief Guide on how to use Sniff-em as a Network
Intrusion device and detect some Internet Worms which spread over the last
years. Code Red (1 and 2), Hybris, Nimda
and
Badtrans. A free download of the Sniff-em
filter is available here.
Windows XP SP2 SearchUrl hijack lock circumvention.
• Zoller Thierry has
found a small vulnerability within a Windows XP SP2 security feature.
Read
more about it.
 |
 |
|||||
|
||||||
 |
