research-article

Polymorphic shellcode: the demise of signature-based detection

Author:

Salvatore J. StolfoAuthors Info & Claims

CSIIRW '09: Proceedings of the 5th Annual Workshop on Cyber Security and Information Intelligence Research: Cyber Security and Information Intelligence Challenges and Strategies

Article No.: 7, Page 1

https://doi.org/10.1145/1558607.1558615

Published: 13 April 2009 Publication History

Abstract

No abstract available.

Index Terms

Polymorphic shellcode: the demise of signature-based detection

Recommendations

A polymorphic shellcode detection mechanism in the network
InfoScale '07: Proceedings of the 2nd international conference on Scalable information systems

Buffer overflow attack is a major security problem in recent years. The polymorphism technique for shellcode becomes more and more popular along with development of Internet. This paper proposes a method to detect the polymorphic shellcode for Windows ...
On the infeasibility of modeling polymorphic shellcode
CCS '07: Proceedings of the 14th ACM conference on Computer and communications security

Polymorphic malcode remains a troubling threat. The ability formal code to automatically transform into semantically equivalent variants frustrates attempts to rapidly construct a single, simple, easily verifiable representation. We present a ...
English shellcode
CCS '09: Proceedings of the 16th ACM conference on Computer and communications security

History indicates that the security community commonly takes a divide-and-conquer approach to battling malware threats: identify the essential and inalienable components of an attack, then develop detection and prevention techniques that directly target ...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

CSIIRW '09: Proceedings of the 5th Annual Workshop on Cyber Security and Information Intelligence Research: Cyber Security and Information Intelligence Challenges and Strategies

April 2009

952 pages

ISBN:9781605585185

DOI:10.1145/1558607

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 13 April 2009

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Qualifiers

Research-article

Conference

CSIIRW '09

CSIIRW '09: Fifth Cyber Security and Information Intelligence Research Workshop

April 13 - 15, 2009

Tennessee, Oak Ridge, USA

Index Terms

Recommendations

A polymorphic shellcode detection mechanism in the network

On the infeasibility of modeling polymorphic shellcode

English shellcode

Comments

Published In

Publisher

Publication History

Permissions

Check for updates

Qualifiers

Conference

Other Metrics

Article Metrics

Other Metrics

Abstract

Index Terms

Recommendations

A polymorphic shellcode detection mechanism in the network

On the infeasibility of modeling polymorphic shellcode

English shellcode

Comments

Information

Published In

Publisher

Publication History

Permissions

Check for updates

Qualifiers

Conference

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

View options

Share

Share this Publication link

Share on social media

Affiliations