Tunisian Antivirus Blog.
 Ben Hedibi Hassne (sovietskicpu) <BenHedibi fsb-antivirus com> |
Friday, December 21 2007 15:29.29 CST |
http://av-rage.blogspot.com
Comments
 RolfRolles |
Posted: Friday, December 21 2007 17:32.22 CST |
| Thanks for the link! AV emulators make for very interesting subject material. Too bad (for me) that it's written in French, but the machine translation works. | |
 sovietskicpu |
Posted: Saturday, December 22 2007 17:26.05 CST |
| Yes it is a real interesting subject material. I was pointing at some antiviral technologies HYPES ( Big lies ) for example : Dynamic Code Translation as a real optimisation technique for making emulation process quicker... It was first claimed by Peter Szor from Symantec in his book "THE ART OF COMPUTER VIRUS RESEARCH AND DEFENSE" and guess why Norton engines are so crippled hehe... then i noticed a big shot from VBA32 www.anti-virus.by/en/ saying clearly using Dynamic Code Translation too in their emulation engine (Real Big technical lie). I was just demonstrating why the dynamic code translation technique is not suitable for antiviral purposes... And some things you don't really notice until you begin to code your own antiviral engine. | |