« The List of Dubious Research - 2 | Main | Update servers vacation »
December 11, 2006
Best of AVAR 2006
Some of the best presentations from AVAR 2006 according to yours truly:
Prevalence of PE packers in e-mail traffic - Maksym Schipka - MessageLabs / Interesting stats regarding the use of executable packers in e-mail attachments.
Witnessing the evolution of an automated release scanning system - Jonathan Poon - Microsoft / The reason why Microsoft products have been virus free for the past 6 years.
Attacks on Virtual Machine Emulators - Peter Ferrie - Symantec / Lots of way to detect virtual machine software such as QEMU and VMWare.
Binary Feature Extraction and Comparison Using Function Complexity - Aditya Kapoor & Joel Spurlock - McAfee AVERT Lab / Paper on a Win32 PE malware classification tool that uses static code analysis.
Kernel Malware: The Attack from Within - Kimmo Kasslin - F-Secure / Interesting ring0 aware Win32 malware.
Posted by Costin Raiu at December 11, 2006 2:25 PM