Security and Malware in Virtual Environments

With virtualization growing in popularity, what security considerations should be kept in mind to prevent virtual security risks and malware? Our virtual security videos have a look.

Will Sandboxing Prove Effective Against Evasive Malware?

Malware is more sophisticated and evolving more quickly than ever before. Much effort is devoted to new approaches against malware, such as sandboxing, to keep threats at bay. Our videos on sandboxing in our malware protection section discuss the pros and cons.

Malware Protection Techniques

See our multi-part series on malware protection techniques examining the various means anti-malware vendors utilize to block malware.

Sourcefire Service Offerings

Leverage Sourcefire education and services offerings to gain expertise to optimize your Sourcefire deployment.

Learn More

1 2 3 4

Click any subject below to begin expanding your cybersecurity knowledge

Network Security (Intrusion Prevention/Firewalls/NGFW/etc.)

Intrusion Prevention Systems (IPS) - Overview
Intrusion Prevention System Categories
IPS Detections: Anomaly based
IPS Detections: Stateful Protocol Analysis
Measuring Efficacy (Part 1): Terminology and Base Rate
Measuring Efficacy (Part 2): False Positives
Firewall high-level overview
Advanced Firewalls, Part 1 - Applications and Users
Advanced Firewalls, Part 2 - IPS and Threat Protection

Network Threats
Port Scanning
Denial of Service Attacks: Smurf Attack
Denial of Service Attacks: Open DNS Resolvers
Denial of Service Attacks: Ping of Death
Denial of Service Attacks: TCP SYN Flooding
Denial of Service Attacks: Protecting Against SYN Flooding with SYN Cookies

Malware Protection Techniques

Protection Techniques (Part 1): overview
Protection Techniques (Part 2): signatures
Protection Techniques (Part 3): heuristics
Protection Techniques (Part 4): behavior-based
Additional Protection Techniques - Whitelisting
Additional Protection Techniques – Endpoint Sandboxing
Additional Protection Techniques – Sandboxing and Emulation
Additional Protection Techniques – Spectrum-based
Additional Protection Techniques – Network-based
Why Threats Get Through (Part 1): Malware Author's Perspective
Why Threats Get Through (Part 2): Limitations of Current Approaches

How Anti-Malware Vendors Work

How vendors work (part 1): Overview
How vendors work (part 2): Sample Collection
How vendors work (part 3): Sample Processing

Alternate Platforms (e.g., Mobile, Virtual, etc.)

Virtual
Virtualization Overview
Virtual Security Considerations, Part 1
Virtual Security Considerations, Part 2
Malware on Virtual Machines
Malware Defense in Virtual Environments

Mobile
Mobile Malware (Part 1): Motivation/Intro
Mobile Malware (Part 2): Propagation
Mobile Malware (Part 3): Malicious Actions

History of Computer Viruses

History of Computer Viruses (part 1)
History of Computer Viruses (part 2)

Botnets

Botnets (Part 1): Intro/Applications
Botnets (Part 2): Applications
Botnets (Part 3): More Applications
Botnets (Part 4): Even More Applications
Botnets (Part 5): Communication Protocols Overview

Malware Analysis/Case Studies

Internet Explorer Nitro Zero Day
W32.Changeup / Vobfus
Conficker (Part 1): Introduction
Conficker (Part 2): Propagation
Flame (Part 1): Overview
Flame (Part 2): How it Spread
Flame (Part 3): Characteristics
Java Exploit Zero Day CVE-2012-4681
Sality (Part 1): Overview
Shamoon / W32.Disstrack
ZeroAccess (Part 1): Introduction
ZeroAccess (Part 2): Installation and Resilience
ZeroAccess (Part 3): Peer-to-Peer Botnet Mechanics
Web Exploit Kits (Part 1): Overview
Web Exploit Kits (Part 2): Technical Description
Web Exploit Kits (Part 3): Thwarting Detection

Threat Taxonomies

Threat Taxonomy, Part 1 - Overview
Threat Taxonomy, Part 2 - Harm Done
Vulnerabilities and Exploits 101 (Part 1)
Vulnerabilities and Exploits 101 (Part 2)

Cryptography/Authentication/Passwords

Cryptography
Cryptographic Hash Functions: Part 1, Overview

Passwords
Password Security and Cryptographic Hash Functions
Password Theft on Virtual Keyboards
Password Dictionary Attacks

Two Factor Authentication
Two Factor Authentication Overview
Token-Based Two-Factor Authentication
Paper-Based Two-Factor Authentication
Two Factor Authentication And Session Hijacking Trojans
Pros and Cons of Two Factor Authentication
Phishing and Two Factor Authentication

Rootkits

Rootkits: Introduction and Overview
Rootkits, Part 2: High Level Techniques
Rootkits, Part 3: Direct Kernel Object Manipulation

Stay Informed!

Stay up to date on new Chalk Talks videos by filling out the below form for occasional email updates!

 