Malware:ITX8042:2010:LAB

Allikas: Lambda
Labs
1 Lab/Home assignment

Milestone for 1 homework 20 th sept. should be sent to course-malware@cert.ee

IP-s to AS-is and abuse

212.47.223.33 194.204.43.132 81.20.150.67 84.50.42.22 193.40.254.185 213.219.122.17 90.190.106.4 74.118.193.81

Questions that should be answered

 * How routing works between ISP/is only for Estonian IP/s (best guess +sources)
 *  Whom to report abuse  ?
 *  Tools that you  found with help of search engines and used to to this lab ?
2 Lab/Home assignment

Milestone for 2 homework 30 th sept. should be sent to course-malware@cert.ee

Analyze with on line means 3 malware samples from Pahadus.zip (password:infected)

Resources

http://www.threatexpert.com/submit.aspx

http://anubis.iseclab.org/

https://aerie.cs.berkeley.edu/

http://camas.comodo.com/

http://www.sunbeltsecurity.com/sandbox/

http://eureka.cyber-ta.org/

http://www.norman.com/security_center/security_tools/submit_file/en


Questions that should be answered

 * Sample identification
   * Unordered List Item
   * File name , type , size
   * File hashes
   * Av identifiers
 * Sample's Charachteristics
   * Infection capapilites
   * Remote interaction
 * Self-preservation capability
 * Additional  information
 * Incident recommendations
   * Indicators for detecting
     * Computer system
     * Network
   * Possible disinfection strategies -recommend if possible and in range of you knowledge
 * Use at least  4  different on-line sources . From  4 at least  least 2  must-be sources that are not in the listed  ( sources for malware testing should be included)
 * Compare used sources  and give your opinion on on-line source  usability  and reliability  compared to others (read fine print that is given)


3 Lab/Home assignment

Milestone for 3 homework 7 th October. . should be sent to course-malware@cert.ee

Find Forum and learn 

 * how much costs Ddos ,
 * how much you should pay for credit card number

Write “Spam” e-mail to address course-malware@cert.ee with rcp-to you mail address with found information

include links to the forum where you found this information

4 Home assignment
Write  at least 300 words with recommendation  how to motivate home users to secure their systems and use computer safely.


5 Lab/Home assignment
   * Find some (3) anti phishing organizations
   * Find some (2) free phishkit websites (a la just4sec.com, note - some kits are taking advantage of the miscreants ;-) )
   * Task: find the “kit” in https://sim.cert.ee/phish/ (“kit” filename is in lowercase, 2 chars, zip archive, a la /../phish/demo.py )
Pärit leheküljelt "http://lambda.ee/w/index.php?title=Malware:ITX8042:2010:LAB&oldid=8427"