Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Independent Test of Security


  • Please log in to reply
4 replies to this topic

#1 Tabvla

Tabvla

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:02:51 PM

Posted 09 June 2015 - 04:57 AM

Q1.  What is the most reliable way to test that the installed security methods are actually doing their job..?  (Firewall, Antivirus, Antimalware, Browser aids... etc.)

 

Q2.  Which is the best online scanner to use to check that the installed scanner is identifying all potential risks..?

 

Thanks for your suggestions.

 

T.

 



BC AdBot (Login to Remove)

 


m

#2 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 50,606 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:08:51 AM

Posted 09 June 2015 - 05:11 AM

Note: Spycar is a suite of tools (about 25 small programs) designed to test the behavior-based defenses of an anti-spyware tool...mimic malware-like behavior in a benign form. Each program engages in some type of behavior normally associated with malware...it will add favorites to Internet Explorer or add a file and change the registry so that the file is launched at start-up. After testing is complete, the software will undo all of the changes it made.

Note: The EICAR test file is not malware, nor was it created by malware authors. The EICAR test file was created by Eddy Willems, a board member of EICAR (European Institute for Computer Anti-Virus Research)/
* VT results for strict interpretation (68 bytes)
* VT results for whitespace interpretation (70 bytes: 68 bytes + CR NL)

You can also create your own Eicar test file by opening Notepad (or other text editor), copy and paste the following string of characters in the code box below into a new text file, and then saving it.

X5O!P%@AP[4\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H*
Your anti-virus program should promptly detect the file as an actual virus, alert you and remove it.

Using real viruses for testing in the real world is rather like setting fire to the dustbin in your office to see whether the smoke detector is working. Such a test will give meaningful results, but with unappealing, unacceptable risks.

Eicar: Anti-Malware Testfile

Before anything a general warning, never try to test/try out malware samples if you don't know what you're doing! The risk of inadvertently infecting another computer or a host computer is always present.

...testing malware samples with different security products is not very productive in my opinion. You would indeed need a site that is actively dropping the infection (which is hard to find, they are usually cleaned/taken off-line as soon as the malicious behavior is observed and reported). Downloading and dropping specific files isn't the same and doesn't give a good representation of how a "real" infection enters a system.


.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#3 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 50,606 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:08:51 AM

Posted 09 June 2015 - 05:12 AM

There are online port scanning services which can be used to test your Firewall and check for open and vulnerable ports:
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#4 Tabvla

Tabvla
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:02:51 PM

Posted 10 June 2015 - 04:41 AM

Quietman, thank you for your suggestions and the links.... :thumbup2:

 

I will investigate these further over the next few days and will post back to this Thread if I have any further questions.

 

Tks

 

T.

 



#5 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 50,606 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:08:51 AM

Posted 10 June 2015 - 05:09 AM

You're welcome.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users