Polymorphisme Viral sous Linux (Viral Polymorphism in Linux)

Philippe Beaucamps 1
1 CARTE - Theoretical adverse computations, and safety
Inria Nancy - Grand Est, LORIA - FM - Department of Formal Methods
Abstract : Nowadays viruses use polymorphic techniques to mutate their code on each replication, thus evading detection by antiviruses. However detection by emulation can defeat simple polymorphism: thus metamorphic techniques are used which thoroughly change the viral code, even after decryption. We briefly detail this evolution of virus protection techniques against detection and then study the MetaPHOR virus, today's most advanced metamorphic virus.
Type de document :
Article dans une revue
GNU/Linux Magazine France, Diamond Editions, 2007, Hors Série 32
Liste complète des métadonnées

https://hal.inria.fr/inria-00338067
Contributeur : Philippe Beaucamps <>
Soumis le : lundi 10 novembre 2008 - 16:55:52
Dernière modification le : jeudi 11 janvier 2018 - 06:21:25

Identifiants

  • HAL Id : inria-00338067, version 1

Collections

Citation

Philippe Beaucamps. Polymorphisme Viral sous Linux (Viral Polymorphism in Linux). GNU/Linux Magazine France, Diamond Editions, 2007, Hors Série 32. 〈inria-00338067〉

Partager

Métriques

Consultations de la notice

208