| |
| |
About the Author | |
| |
| |
Preface | |
| |
| |
Acknowledgments | |
| |
| |
| |
Strategies of the Attacker | |
| |
| |
| |
Introduction to the Games of Nature | |
| |
| |
Early Models of Self-Replicating Structures | |
| |
| |
John von Neumann: Theory of Self-Reproducing Automata | |
| |
| |
Fredkin: Reproducing Structures | |
| |
| |
Conway: Game of Life | |
| |
| |
Core War: The Fighting Programs | |
| |
| |
Genesis of Computer Viruses | |
| |
| |
Automated Replicating Code: The Theory and Definition of Computer Viruses | |
| |
| |
References | |
| |
| |
| |
The Fascination of Malicious Code Analysis. | |
| |
| |
Common Patterns of Virus Research | |
| |
| |
Antivirus Defense Development | |
| |
| |
Terminology of Malicious Programs | |
| |
| |
Viruses | |
| |
| |
Worms | |
| |
| |
Logic Bombs | |
| |
| |
Trojan Horses | |
| |
| |
Germs | |
| |
| |
Exploits | |
| |
| |
Downloaders | |
| |
| |
Dialers | |
| |
| |
Droppers | |
| |
| |
Injectors | |
| |
| |
Auto-Rooters | |
| |
| |
Kits (Virus Generators) | |
| |
| |
Spammer Programs | |
| |
| |
Flooders | |
| |
| |
Keyloggers | |
| |
| |
Rootkits | |
| |
| |
Other Categories | |
| |
| |
Joke Programs | |
| |
| |
Hoaxes: Chain Letters | |
| |
| |
Other Pests: Adware and Spyware | |
| |
| |
Computer Malware Naming Scheme :// / . [ ] : # @m or @mm ! Annotated List of Officially Recognized Platform Names | |
| |
| |
References | |
| |
| |
| |
Malicious Code Environments. | |
| |
| |
Computer Architecture Dependency | |
| |
| |
CPU Dependency | |
| |
| |
Operating System Dependency | |
| |
| |
Operating System Version Dependency | |
| |
| |
File System Dependency | |
| |
| |
Cluster Viruses | |
| |
| |
NTFS Stream Viruses | |
| |
| |
NTFS Compression Viruses | |
| |
| |
ISO Image Infection | |
| |
| |
File Format Dependency | |
| |
| |
COM Viruses on DOS | |
| |
| |
EXE Viruses on DOS | |
| |
| |
NE (New Executable) Viruses on 16-bit Windows and OS/2 | |
| |
| |
LX Viruses on OS/2 | |
| |
| |
PE (Portable Executable) Viruses on 32-bit Windows | |
| |
| |
ELF (Executable and Linking Format) Viruses on UNIX | |
| |
| |
Device Driver Viruses | |
| |
| |
Object Code and LIB Viruses | |
| |
| |
Interpreted Environment Dependency | |
| |
| |
Macro Viruses in Microsoft Products | |
| |
| |
REXX Viruses on IBM Systems | |
| |
| |
DCL (DEC Command Language) Viruses on DEC/VMS | |
| |
| |
Shell Scripts on UNIX (csh, ksh, and bash) | |
| |
| |
VBScript (Visual Basic Script) Viruses on Windows Systems | |
| |
| |
BATCH Viruses | |
| |
| |
Instant Messaging Viruses in mIRC, PIRCH scripts | |
| |
| |
SuperLogo Viruses | |
| |
| |
JScript Viruses | |
| |
| |
Perl Viruses | |
| |
| |
WebTV Worms in JellyScript Embedded in HTML Mail | |
| |
| |
Python Viruses | |
| |
| |
VIM Viruses | |
| |
| |
EMACS Viruses | |
| |
| |
TCL Viruses | |
| |
| |
PHP Viruses | |
| |
| |
MapInfo Viruses | |
| |
| |
ABAP Viruses on SAP | |
| |
| |
Help File Viruses on Windows When You Press F1 | |
| |
| |
JScript Threats in Adobe PDF | |
| |
| |
AppleScript Dependency | |
| |
| |
ANSI Dependency | |
| |
| |
Macromedia Flash ActionScript Threats | |
| |
| |
HyperTalk Script Threats | |
| |
| |
AutoLisp Script Viruses | |
| |
| |
Registry Dependency | |
| |
| |
PIF and LNK Dependency | |
| |
| |
Lotus Word Pro Macro Viruses | |
| |
| |
AmiPro Document Viruses | |
| |
| |
Corel Script Viruses | |
| |
| |
Lotus 1-2-3 Macro Dependency | |
| |
| |
Windows Installation Script Dependency | |
| |
| |
AUTORUN.INF and Windows INI File Dependency | |
| |
| |
HTML (Hypertext Markup Language) Dependency | |
| |
| |
Vulnerability Dependency | |
| |
| |
Date and Time Dependency | |
| |
| |
JIT Dependency: Microsoft .NET Viruses | |
| |
| |
Archive Format Dependency | |
| |
| |
File Format Dependency Based on Extension | |
| |
| |
Network Protocol Dependency | |
| |
| |
Source Code Dependency | |
| |
| |
Source Code Trojans | |
| |
| |
Resource Dependency on Mac and Palm Platforms | |
| |
| |
Host Size Dependency | |
| |
| |
Debugger Dependency | |
| |
| |
Intended Threats that Rely on a Debugger | |
| |
| |
Compiler and Linker Dependency | |
| |
| |
Device Translator Layer Dependency | |
| |
| |
Embedded Obje | |