Hey guys.Well,I'm going to write a tutorial on computer viruses and wanna know which topic is the hottest in this industry these days.Just tell me which topic would you really like to read about.Or which topic is being the most talked about these days.Please note that the topic must be related to computer viruses.Thanks.
P.S if you're gonna say Blaster Worm then forget it because I've already written a free ebook on the Blaster Worm which you can download from:
http://www.virustimes.cjb.net/msblast/download.html
anyway thanks.

I would be interested in reading a tutorial on worms if possible, specifically those that employ the DCOM vulnerability. Infection methodology, general behavior, and detection and prevention methods would be good things to write on.

How about:

"If I did not have a traditional AV scanner, how could I prevent virus infection"

This is sort of related to one of my pet topics which is "second line" defences. How does this stuff get in (in general) and what ought we to do to keep it out?

Cheers

Hey nihil,
do you mean that I should write about how to protect oneself from viruses without using an Anti Virus program?

Originally posted here (http://www.AntiOnline.com/showthread.php?threadid=252007#post695826) by ali1
Hey nihil,
do you mean that I should write about how to protect oneself from viruses without using an Anti Virus program?

That one might be pretty simple... remove cdrom and floppy drives and don't connect to the internet. Oh, you may want to disable the adding of other hardware too... like zip drives and usb flash drives. Then it be nearly impossible to get infected. :p

Originally posted here (http://www.AntiOnline.com/showthread.php?threadid=252007#post695752) by D0pp139an93r
I would be interested in reading a tutorial on worms if possible, specifically those that employ the DCOM vulnerability. Infection methodology, general behavior, and detection and prevention methods would be good things to write on.

The tutorial I wrote here (http://www.antionline.com/showthread.php?s=&threadid=252016) on the MS Blaster Worm gives a good bit of insight into several of those things. Many of the techniques employed there can be carried onto different worms, and re-used again and again in future events.

Doesn't answer everything, but it might be of some help, atleast for now.

But I still don't get which topic is the hottest.May be I should write one on the Swen Worm?

Hi Ali 1,

Well, not quite run with NO AV and NO firewall. What I had in mind was more along the lines of "as well as". ;)

I was thinking of stuff like Registry protection, management of scripts running, e-mail management, checksummers, spyware, trojans, botware. In other words, the kind of thing that your regular AV and firewall may not be too good at?

There are a lot of minor/fringe produscts out there that do this kind of thing, and a lot of them are "free" :D

If you would like some leads to this stuff please PM me and I will give you names/links to some that I have found.

You write a nice TUT, and I am a lazy b*****d so I would be glad if you took up this "leg of the relay race" so to speak.

Cheers

Johnno

it might be helpfull to list their methods of attack. what a log would look like on a machine thats been attacked by one. what ports they open for back doors. if you could, the methods virus writes use to access infected machines (specially written clients, telnet, nc, irc, etc.) and how thay are notified of the ones infected (irc, email, dns calls, etc).

You could write something about Honey Pots (not really virus related but it is unique and hasn't been done before)
Just my $0.02

Well,Nihil's idea is pretty good.But if I write a tutorial on this topic would be a highly technical one which a newbie user wouldn't be able to understand.However I'll consider the Honeypot one.
thanks.
Ali.

if you're going to write a tutorial on computer viruses and find out what's 'hot' and what's not I would suggest you try logging on websites that offer virus tutorial (there are lots of them). Well, how about a metamorphic/polymorphic worm with a keylogger and backdoor component? (As you see, this is old crap already. The technology/algorithm behind these programs are well known and well-documented.)

I think the hottest topic in virus' right now is the complete lack of creativity...

All hese virus' do is spread and allow acces, how boring. What ever happened to "Your Computer Is Stoned" I don't think I would be the same person today without my machine telling me this...???

I think the hottest topic in virus' right now is the complete lack of creativity...

All hese virus' do is spread and allow acces, how boring. What ever happened to "Your Computer Is Stoned" I don't think I would be the same person today without my machine telling me this...???

The point of writing viruses has changed. People now do it for a few reasons.
1) Revenge
2) Look Cool(skiddie)
3) Corperate Espionage/Information Obtaining

-Cheers-

PS: The original viruses were written labs for the most part.

YES option two to look, COOL. I think stoned is the ckewlest virus I ever saw pissed my mother to no end. And I wouldn't want to kill that guy for annoyance becuase it has an amusement value.

I would find an exhaustive paper on Windows Root Kits to be valuable. The information is out there, but I have not found a consolidated reference that thoroughly touches on, tools for detection; how they hide, function, and communicate; integrated with traffic analysis at the packet level after sniffing the suspect stream.

Hey guys.Well I decided that I should write an article on NTFS ADS viruses.And that's what I'm working at right now.I'll complete it soon and tell you about it.

ei hope you'll work with rootkits ... just like in the malware TROJ_SLANRET.A.

That malware is cool.

Just removed 10 ADS stream infected files from my machine. Found them with Diamond CS TDS3. Having a hard time finding any data on the beast. So far the best write up was at the TDS homepage.
Sure would appreciate any links to the subject.