Monthly Archives: November 2011

How to bypass AV

We came across this presentation given by Andrew King at this year’s Toorcon in San Diego and thought it was worth posting for some Thanksgiving reading. You’ll be able to follow along just fine if, like Andrew, you believe building polymorphic … Continue reading →

Down and Dirty with Duqu – Analysis with ECAT

As part of our series looking at how ECAT V.3.2 detects and analyzes threats on compromised endpoints, we continue with one that has been getting a lot of attention in the media for some time now – Duqu. To recap … Continue reading →

Poison Ivy (“Nitro”) and ECAT analysis

In this blog post we continue in our series looking at how ECAT detects and analyses compromises that evade traditional detection This time, we’ve taken a look at a recent rev of Poison Ivy that was brought into the limelight by Symantec’s report … Continue reading →

Silicium and Opswat partner to integrate Metascan, ECAT

Silicium Security integrates ECAT with OPSWAT’s Metascan to provide multiple engine malware scanning technology inside ECAT advanced malware detection for endpoints Montreal, QC, — November 1st, 2011 — Silicium Security, the provider of ECAT advanced malware detection, today announced that it … Continue reading →

Finding an evil in a haystack...

• The Threats
• Our Approach
• Our Software

Latest Blog Posts

• 16.02Securabit ECAT Podcast Feb 22nd: Old wine in a new bottle
• 15.02ECAT now integrates Bit9's GSR
• 13.02Introduction to ECAT - Video
• 26.01RSA - your complementary expo pass
• 16.01When being #1 means a 42% failure rate
• 09.01ECAT at RSA Conference 2012 - Feb 27
• 01.01ZeroAccess - the movie
• 21.11Down and Dirty with Duqu - Analysis with ECAT
• 02.11Poison Ivy ("Nitro") and ECAT analysis
• 02.11Silicium and Opswat partner to integrate Metascan, ECAT

Follow us

Archives

• February 2012
• January 2012
• November 2011
• October 2011
• September 2011
• May 2011
• April 2011
• March 2011
• November 2010
• October 2010
• September 2010
• July 2010