Behavior-Based Spyware Detection: Using Dynamic Taint Analysis

0 avg rating
( 0 ratings by Goodreads )
 
9783639022063: Behavior-Based Spyware Detection: Using Dynamic Taint Analysis

Generating good signatures for the current anti-spyware toolkits and deploying them in a timely fashion is a demanding task. Even if the signatures are up-to-date, signature based detection techniques usually suffer from the inability to detect novel and unknown threats. We believe that behavior-based approaches are capable of overcoming this drawback.To this end, we implemented TQAna. Our tool is based on taint analysis and function call hooking to provide dynamic analysis that is carried out on an emulated system. Taint analysis, as implemented with TQAna, provides the ability to track data throughout the whole system on hardware level. The observed functions cover most aspects of the Windows operating system, such as network-, and file system access, shared memory, or the dynamic loader.This book addresses system and security researchers in the fields of operating systems and malicious software analysis.

"synopsis" may belong to another edition of this title.

About the Author:

Manuel Egele, Dipl.-Ing.: Studied Computer Science at the Vienna University of Technology. Researcher at the International Secure Systems Lab, Vienna

"About this title" may belong to another edition of this title.

Buy New View Book
List Price: US$ 75.74
US$ 44.07

Convert Currency

Shipping: US$ 5.17
From United Kingdom to U.S.A.

Destination, Rates & Speeds

Add to Basket

Top Search Results from the AbeBooks Marketplace

1.

Egele, Manuel
Published by VDM Verlag Dr. Mueller e.K. (2016)
ISBN 10: 3639022068 ISBN 13: 9783639022063
New Paperback Quantity Available: 1
Print on Demand
Seller:
Ria Christie Collections
(Uxbridge, United Kingdom)
Rating
[?]

Book Description VDM Verlag Dr. Mueller e.K., 2016. Paperback. Book Condition: New. PRINT ON DEMAND Book; New; Publication Year 2016; Not Signed; Fast Shipping from the UK. No. book. Bookseller Inventory # ria9783639022063_lsuk

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 44.07
Convert Currency

Add to Basket

Shipping: US$ 5.17
From United Kingdom to U.S.A.
Destination, Rates & Speeds

2.

Egele, Manuel
ISBN 10: 3639022068 ISBN 13: 9783639022063
New Quantity Available: 1
Seller:
Rating
[?]

Book Description Book Condition: New. Publisher/Verlag: VDM Verlag Dr. Müller | Using Dynamic Taint Analysis | Generating good signatures for the current anti-spyware toolkits and deploying them in a timely fashion is a demanding task. Even if the signatures are up-to-date, signature based detection techniques usually suffer from the inability to detect novel and unknown threats. We believe that behavior-based approaches are capable of overcoming this drawback.To this end, we implemented TQAna. Our tool is based on taint analysis and function call hooking to provide dynamic analysis that is carried out on an emulated system. Taint analysis, as implemented with TQAna, provides the ability to track data throughout the whole system on hardware level. The observed functions cover most aspects of the Windows operating system, such as network-, and file system access, shared memory, or the dynamic loader.This book addresses system and security researchers in the fields of operating systems and malicious software analysis. | Format: Paperback | Language/Sprache: english | 125 gr | 76 pp. Bookseller Inventory # K9783639022063

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 55.37
Convert Currency

Add to Basket

Shipping: US$ 3.51
From Germany to U.S.A.
Destination, Rates & Speeds

3.

Manuel Egele
Published by VDM Verlag (2008)
ISBN 10: 3639022068 ISBN 13: 9783639022063
New Quantity Available: > 20
Print on Demand
Seller:
Pbshop
(Wood Dale, IL, U.S.A.)
Rating
[?]

Book Description VDM Verlag, 2008. PAP. Book Condition: New. New Book. Shipped from US within 10 to 14 business days. THIS BOOK IS PRINTED ON DEMAND. Established seller since 2000. Bookseller Inventory # IQ-9783639022063

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 57.60
Convert Currency

Add to Basket

Shipping: US$ 3.99
Within U.S.A.
Destination, Rates & Speeds

4.

Manuel Egele
Published by VDM Verlag (2008)
ISBN 10: 3639022068 ISBN 13: 9783639022063
New Paperback Quantity Available: 1
Seller:
Irish Booksellers
(Rumford, ME, U.S.A.)
Rating
[?]

Book Description VDM Verlag, 2008. Paperback. Book Condition: New. book. Bookseller Inventory # M3639022068

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 66.71
Convert Currency

Add to Basket

Shipping: FREE
Within U.S.A.
Destination, Rates & Speeds

5.

Manuel Egele
Published by VDM Verlag (2008)
ISBN 10: 3639022068 ISBN 13: 9783639022063
New Quantity Available: > 20
Print on Demand
Seller:
Books2Anywhere
(Fairford, GLOS, United Kingdom)
Rating
[?]

Book Description VDM Verlag, 2008. PAP. Book Condition: New. New Book. Delivered from our UK warehouse in 3 to 5 business days. THIS BOOK IS PRINTED ON DEMAND. Established seller since 2000. Bookseller Inventory # LQ-9783639022063

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 55.66
Convert Currency

Add to Basket

Shipping: US$ 11.99
From United Kingdom to U.S.A.
Destination, Rates & Speeds

6.

Manuel Egele
Published by VDM Verlag Dr. Mueller e.K., Germany (2008)
ISBN 10: 3639022068 ISBN 13: 9783639022063
New Paperback Quantity Available: > 20
Print on Demand
Seller:
The Book Depository EURO
(London, United Kingdom)
Rating
[?]

Book Description VDM Verlag Dr. Mueller e.K., Germany, 2008. Paperback. Book Condition: New. Language: English . Brand New Book ***** Print on Demand *****.Generating good signatures for the current anti-spyware toolkits and deploying them in a timely fashion is a demanding task. Even if the signatures are up-to-date, signature based detection techniques usually suffer from the inability to detect novel and unknown threats. We believe that behavior-based approaches are capable of overcoming this drawback. To this end, we implemented TQAna. Our tool is based on taint analysis and function call hooking to provide dynamic analysis that is carried out on an emulated system. Taint analysis, as implemented with TQAna, provides the ability to track data throughout the whole system on hardware level. The observed functions cover most aspects of the Windows operating system, such as network-, and file system access, shared memory, or the dynamic loader. This book addresses system and security researchers in the fields of operating systems and malicious software analysis. Bookseller Inventory # AAV9783639022063

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 70.54
Convert Currency

Add to Basket

Shipping: US$ 4.00
From United Kingdom to U.S.A.
Destination, Rates & Speeds

7.

Manuel Egele
Published by VDM Verlag Mai 2008 (2008)
ISBN 10: 3639022068 ISBN 13: 9783639022063
New Taschenbuch Quantity Available: 2
Seller:
Rheinberg-Buch
(Bergisch Gladbach, Germany)
Rating
[?]

Book Description VDM Verlag Mai 2008, 2008. Taschenbuch. Book Condition: Neu. Neuware - Generating good signatures for the current anti-spyware toolkits and deploying them in a timely fashion is a demanding task. Even if the signatures are up-to-date, signature based detection techniques usually suffer from the inability to detect novel and unknown threats. We believe that behavior-based approaches are capable of overcoming this drawback. To this end, we implemented TQAna. Our tool is based on taint analysis and function call hooking to provide dynamic analysis that is carried out on an emulated system. Taint analysis, as implemented with TQAna, provides the ability to track data throughout the whole system on hardware level. The observed functions cover most aspects of the Windows operating system, such as network-, and file system access, shared memory, or the dynamic loader. This book addresses system and security researchers in the fields of operating systems and malicious software analysis. 80 pp. Englisch. Bookseller Inventory # 9783639022063

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 59.31
Convert Currency

Add to Basket

Shipping: US$ 20.13
From Germany to U.S.A.
Destination, Rates & Speeds

8.

Manuel Egele
Published by VDM Verlag Mai 2008 (2008)
ISBN 10: 3639022068 ISBN 13: 9783639022063
New Taschenbuch Quantity Available: 2
Seller:
BuchWeltWeit Inh. Ludwig Meier e.K.
(Bergisch Gladbach, Germany)
Rating
[?]

Book Description VDM Verlag Mai 2008, 2008. Taschenbuch. Book Condition: Neu. Neuware - Generating good signatures for the current anti-spyware toolkits and deploying them in a timely fashion is a demanding task. Even if the signatures are up-to-date, signature based detection techniques usually suffer from the inability to detect novel and unknown threats. We believe that behavior-based approaches are capable of overcoming this drawback. To this end, we implemented TQAna. Our tool is based on taint analysis and function call hooking to provide dynamic analysis that is carried out on an emulated system. Taint analysis, as implemented with TQAna, provides the ability to track data throughout the whole system on hardware level. The observed functions cover most aspects of the Windows operating system, such as network-, and file system access, shared memory, or the dynamic loader. This book addresses system and security researchers in the fields of operating systems and malicious software analysis. 80 pp. Englisch. Bookseller Inventory # 9783639022063

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 59.31
Convert Currency

Add to Basket

Shipping: US$ 20.13
From Germany to U.S.A.
Destination, Rates & Speeds

9.

Manuel Egele
Published by VDM Verlag
ISBN 10: 3639022068 ISBN 13: 9783639022063
New Paperback Quantity Available: > 20
Seller:
BuySomeBooks
(Las Vegas, NV, U.S.A.)
Rating
[?]

Book Description VDM Verlag. Paperback. Book Condition: New. 76 pages. Dimensions: 8.7in. x 5.9in. x 0.2in.Generating good signatures for the current anti-spyware toolkits and deploying them in a timely fashion is a demanding task. Even if the signatures are up-to-date, signature based detection techniques usually suffer from the inability to detect novel and unknown threats. We believe that behavior-based approaches are capable of overcoming this drawback. To this end, we implemented TQAna. Our tool is based on taint analysis and function call hooking to provide dynamic analysis that is carried out on an emulated system. Taint analysis, as implemented with TQAna, provides the ability to track data throughout the whole system on hardware level. The observed functions cover most aspects of the Windows operating system, such as network-, and file system access, shared memory, or the dynamic loader. This book addresses system and security researchers in the fields of operating systems and malicious software analysis. This item ships from multiple locations. Your book may arrive from Roseburg,OR, La Vergne,TN. Paperback. Bookseller Inventory # 9783639022063

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 83.67
Convert Currency

Add to Basket

Shipping: FREE
Within U.S.A.
Destination, Rates & Speeds