Xero's Computer Hygiene Class

Started by Xero Shifter, February 11, 2009, 11:34:35 pm

Previous topic - Next topic

Blizzard

I used to use Avira and I'm not really satisfied. It keep annoying me with popup windows even when I turn off all their annoying stuff through registry entries and program execution prevention. I have to admit that I am actually pretty satisfied with Microsoft Security Essentials. I've been using it for over a year and a half now and I've had no problems. I did get a few false positives, but I like the fact that it doesn't start to panic for every "suspicious" file I put on my laptop. It looks like MS finally did something right. MSE is definitely a good free anti-virus solution if you are using a legal Windows copy (I think MSE doesn't work on pirated Windows copies).
Check out Daygames and our games:

King of Booze 2      King of Booze: Never Ever
Drinking Game for Android      Never have I ever for Android
Drinking Game for iOS      Never have I ever for iOS


Quote from: winkioI do not speak to bricks, either as individuals or in wall form.

Quote from: Barney StinsonWhen I get sad, I stop being sad and be awesome instead. True story.

ArcaneAlchemy

January 18, 2013, 02:36:39 am #21 Last Edit: January 18, 2013, 02:43:51 am by ArcaneAlchemy
Here's how it works. There is an initial 'public' test. They did so poorly in that test that they didn't even bother following up in 'private' testing. The latter is where I would do a penetration test with various tools and techniques, as well as performance and some other things. It was to improve the effectiveness of their product. So, in short, the suck so bad that they didn't even want to improve their product, which in turn will make them suck indefinitely.

@Blizzard Yeah dude, MSE is pretty bad ass actually. They tend to do very well and you are spot on regarding the false positives. Especially with analyzing files. A lot of these vendors tend to rate positives for all sorts of stupid reasons, like for a poor whitelisting hash feed or unknown authorship.
"Wait? Do I look like a waiter?" -Kefka

Blizzard

January 18, 2013, 03:22:50 am #22 Last Edit: January 18, 2013, 03:24:48 am by Blizzard
A couple of months ago when I visited my sister in Graz, one of her friends (who should get his IT master very soon) told me they had a class about that kind of stuff. Believe it or not, but the "advanced" algorithms that they used are laughable. Usually malware has a certain type of code signature or calls that the anti-virus software detects and then blocks. You can circumvent that stuff by doing stuff as simple as adding redundant if-blocks in your code. This usually changes the compiled code signature enough to avoid detection.
So for vendors of software that have crappy detection algorithms it's usually easier to simply be aggressive in detection patterns than to crate a good algorithm for detection.
Check out Daygames and our games:

King of Booze 2      King of Booze: Never Ever
Drinking Game for Android      Never have I ever for Android
Drinking Game for iOS      Never have I ever for iOS


Quote from: winkioI do not speak to bricks, either as individuals or in wall form.

Quote from: Barney StinsonWhen I get sad, I stop being sad and be awesome instead. True story.

ArcaneAlchemy

lol amen. It's like I said to a vendor one time regarding a HIPS product.. "So, you're saying that I'll have clean water if I just turn the faucet off?"
"Wait? Do I look like a waiter?" -Kefka

Heretic86

They told me my computer has a virus and it needs to be cleaned so I put it in the bathtub and washed it with No More Tears Baby Soap but now it wont turn on, are you stupid computer guys down again and when are you gunna fix your damn problems?  Im sick and tired of your service not working right.  And for the record, I've been trying to download this Red Ink for the last 45 minutes on my phone but it wont work right when are you gunna fix your crappy service so I can download my Ink?

/total_sarcasm
Current Scripts:
Heretic's Moving Platforms

Current Demos:
Collection of Art and 100% Compatible Scripts

(Script Demos are all still available in the Collection link above.  I lost some individual demos due to a server crash.)