RE: library/executable image

From: Adam Gilmore (vulnat_private)
Date: Mon Mar 24 2003 - 05:45:59 PST

Next message: Adam Gilmore: "RE: Automatic discovery of shellcode address"

Previous message: Martin Mačok: "Re: Detecting abnormal behaviour"
In reply to: Adrian S: "library/executable image"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Explain to us what you're trying to do and we might be able to help you.

-----Original Message-----
From: Adrian S [mailto:hotelectronat_private] 
Sent: Monday, 24 March 2003 3:48 AM
To: vuln-devat_private
Subject: library/executable image

Hi,

Other than identifying the path & PID, what is the other proactive  way 
to detect unauthorised execution of library/executable image ?

thanks
Adrian

Next message: Adam Gilmore: "RE: Automatic discovery of shellcode address"
Previous message: Martin Mačok: "Re: Detecting abnormal behaviour"
In reply to: Adrian S: "library/executable image"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Mon Mar 24 2003 - 10:13:55 PST