... so that I can pull out infected segments from .exe files? I'm currently looking to develop my scripts (moved back to spring break / summer time now) to pick up and alert on codered/codeblue on Linux.

I'm ideally wanting to split out the code for the red/blue worm and use it against my own Linux box so that I can see about alerting my Linux box that there's a definite problem.

Any ideas?

~N~