mod_antimalware: a novel apache module for containing web-based malware infections
- Type
- Slides
- Tags
- Apache, malware, web server
- Authors
- Neil Daswani
- Event
- Black Hat USA 2010
- Indexed on
- Mar 27, 2013
- URL
- https://media.blackhat.com/bh-us-10/presentations/Daswani/BlackHat-USA-2010-Daswani-mod-antimalware-slides.pdf
- File name
- BlackHat-USA-2010-Daswani-mod-antimalware-slides.pdf
- File size
- 2.5 MB
- MD5
- 07e77fdbd33f63e3f0a71d29cabd384e
- SHA1
- 56eb8dfbb8f538b38390c975944d6c779e06a41f
Drive-by downloads planted on legitimate sites (e.g., via "structural" and other vulnerabilities in web applications) cause web sites to get blacklisted by Google, Yahoo, and other search engines and browsers. In this talk, I describe the technical architecture and implementation of mod_antimalware, a novel, open-source containment technology for web servers that can be used to 1) quarantine web-based malware infections before they impact users, 2) allow web pages to safely be served even while a site is infected, and 3) give webmasters time to recover from an attack before their web sites get blacklisted by popular search engines and browsers.
About us
Secdocs is a project aimed to index high-quality IT security and hacking documents. These are fetched from multiple data sources: events, conferences and generally from interwebs.
Statistics
Serving 8166 documents and 531.0 GB of hacking knowledge, indexed from 2419 authors from 163 security conferences.
Contribute
To support this site and keep it alive, you can click on the buttons below. Any help is really appreciated! This service is provided for free, but real money is needed to pay bills.
