Search academic texts

Information × Registration Number 0217U006658, 0117U001816 , R & D reports Title Research, Analysis and Modelling of Modern Information Security Threats Based on Software Exploits and Security Mechanism Flaws, Using Heuristical Analysis popup.stage_title Head Novikov Olexiy, Registration Date 08-12-2017 Organization Faculty of аircraft and space systems NTUU "KPI" popup.description2 The paper investigates the actual vulnerabilities of components of Microsoft Office software products that lead to remote code execution, and were used in targeted attacks in 2017. Examples of malware and implementation of exploits for CVE-2017-0199, CVE-2017-0261, CVE-2017-8570, CVE-2017-8759, CVE-2017-11882 are considered. The software vulnerability models CVE-2017-0199 and CVE-2017-11882 were created. Within the framework of research on methods of counteracting antivirus protection and intrusion detection systems, separate methods of masking on the basis of new features of Windows 10 WSL, detection of emulation methods based on the dynamic characteristics of the mouse movings, steganographic methods, methods of forging DKIM signatures when e-mail is used for payload delivery are considered. The application of Windows 10 AMSI for optimization of the process of obfuscation of scripting components has been investigated. Prototype of antivirus testing environment for software models evaluation were created. The results can be used to improve the defense of state resources of Ukraine5481 Product Description popup.authors Ільїн Костянтин Іванович Ільїн Микола Іванович Кольцов Владислав Вадимович Мазуренко Оксана Анатоліївна Статкевич Максим Олександрович Тоцький Роман Олександрович popup.nrat_date 2020-04-02 Close