Arjun Rana asks:
Recently, my company has installed Cyberoam UTM. I have been asked to check penetration and have also been given clamav and quickheal av to evaluate. How do I check penteration and evaluate av easily.
2 Answers -
Anonymous
October 4, 2010HiDo it in a Test Environment like VMware Workstation or virtualbox, then have like 3000 malware samples and try to inject them and see what will happen.
use a software that tracks file and registry changes such as SysTracer
http://www.blueproject.ro/systracer
you don’t get the real performance on the software when you are testing it on a virtual environment, running a full virus scan on virtual machines takes longer than the Windows installed on the physical hard drive
Gr8 idea. I will also test my environment with this. The OS used on our server is Fedora 11. What is the best server os presently?
I will just try to get the vbox up with windows in it . Pls suggest where to get the malware samles for testing?
October 5, 2010Anonymous
October 5, 2010Hi
Well to find malwares is difficult, mostly its circulated in diverse forum, hard to find. there is actually a forum OFFENSIVE COMPUTING. (http://www.offensivecomputing.net/) there you can be directed, the difficult will be is to establish a contact within them. You can try your luck there.
Good Luck.