How can i determine whether a program code is malicious?
(I read somewhere that security researchers couldn't find anything malicious about the Router 'malware' called ifwatch)
How do they determine whether a code is malicious or not?
is there specific methods to look for that seem to have malicious intents?
halp?
Forum Thread:
Gaining Access into the Victim's Whatsapp on Android
12
Replies
Forum Thread:
Whatsapp Hack?
19
Replies
Forum Thread:
HACK ANDROID with KALI USING PORT FORWARDING(portmap.io)
12
Replies
Forum Thread:
Hydra Syntax Issue Stops After 16 Attempts
2
Replies
Forum Thread:
Hack Instagram Account Using BruteForce
208
Replies
Forum Thread:
Metasploit reverse_tcp Handler Problem
47
Replies
Forum Thread:
How to Train to Be an IT Security Professional (Ethical Hacker)
22
Replies
Metasploit Error:
Handler Failed to Bind
41
Replies
Forum Thread:
How to Hack Android Phone Using Same Wifi
21
Replies
How to:
HACK Android Device with TermuX on Android | Part #1 - Over the Internet [Ultimate Guide]
177
Replies
How to:
Crack Instagram Passwords Using Instainsane
36
Replies
Forum Thread:
How to Hack an Android Device Remotely, to Gain Acces to Gmail, Facebook, Twitter and More
5
Replies
Forum Thread:
How Many Hackers Have Played Watch_Dogs Game Before?
13
Replies
Forum Thread:
How to Hack an Android Device with Only a Ip Adress
55
Replies
How to:
Sign the APK File with Embedded Payload (The Ultimate Guide)
10
Replies
Forum Thread:
How to Run and Install Kali Linux on a Chromebook
18
Replies
Forum Thread:
How to Find Admin Panel Page of a Website?
13
Replies
Forum Thread:
can i run kali lenux in windows 10 without reboting my computer
4
Replies
Forum Thread:
How to Hack School Website
11
Replies
Forum Thread:
Make a Phishing Page for Harvesting Credentials Yourself
8
Replies
How To:
Crack Password-Protected Microsoft Office Files, Including Word Docs & Excel Spreadsheets
How To:
Scan for Vulnerabilities on Any Website Using Nikto
How To:
Gain SSH Access to Servers by Brute-Forcing Credentials
How To:
Use MDK3 for Advanced Wi-Fi Jamming
How To:
Exploit EternalBlue on Windows Server with Metasploit
How To:
Brute-Force Nearly Any Website Login with Hatch
How To:
Hack Apache Tomcat via Malicious WAR File Upload
How To:
Embed a Metasploit Payload in an Original .Apk File | Part 2 – Do It Manually
How To:
Crack Shadow Hashes After Getting Root on a Linux System
How To:
Enumerate SMB with Enum4linux & Smbclient
How To:
Top 10 Things to Do After Installing Kali Linux
How To:
Find Anyone's Private Phone Number Using Facebook
How To:
The Top 80+ Websites Available in the Tor Network
How To:
Dox Anyone
How To:
Find Identifying Information from a Phone Number Using OSINT Tools
How to Hack Wi-Fi:
Stealing Wi-Fi Passwords with an Evil Twin Attack
How To:
Write an XSS Cookie Stealer in JavaScript to Steal Passwords
The Hacks of Mr. Robot:
How to Hide Data in Audio Files
How To:
Extract Bitcoin Wallet Addresses & Balances from Websites with SpiderFoot CLI
How To:
Intercept Images from a Security Camera Using Wireshark
4 Responses
Now a days, there is so much technology to camouflage viruses that you have to know a lot about programs in order to decode them and determine whether there is a backdoor connection.
However, there are ways that you can make an educated decision to download and run a certain program and there are ways to protect yourself from malicious files.
Here's an article I found with a google search about the topic.
If you want some in-depth informations, look for how an antivirus is working.
Basically, an antivirus will compare the signature of the 'program to analyze' with all the known malware signatures.
So it mean that they wont be able to identify a new malware immediately, but after a 'certain' number of infections.
To compensate, they also identify a type of known modifications inside a program, this is why it's a 'bad' habit to test the solidity of a just-created malware with an online antivirus, or connected antivirus on your pc.
Thank you! This should help new users.
Yea this is the basic knowledge, in the case of Ifwatch, the admins could have knew something if they could notice the changes.
It mean that they should have monitored the logs and created the good alerts in order to stay tuned to the critics changes of the system.
But if they have did that, they would have also uninstall telnet i guess.
Share Your Thoughts