Computer/Program Analysis
Malware Detection Techniques Categorization
holycall
2008. 7. 28. 20:20
Malware Detection
What is the Definition of Malware?
- Rule-based
-- Define Normal and deny others (overapproximation)
-- Define Abnormal and detect abnormal (underapproximation)
- Signature-based
How to Get Properties?
-- Dynamic
-- Static
-- Hybrid
What is the Definition of Malware?
- Rule-based
-- Define Normal and deny others (overapproximation)
-- Define Abnormal and detect abnormal (underapproximation)
- Signature-based
How to Get Properties?
-- Dynamic
-- Static
-- Hybrid