Archive for August, 2009

Barrier1 stop Null Byte Poising.

August 10th, 2009 | Author: The Barrier Group

What is Null Byte Poising?

  • The attacker can alter the command line.
  • Replace key areas of the string with null bytes and  the program behavior is changed.  The Null Byte forces the string to end at that point.

Why Traditional Security Appliances and Individual Point Solutions do not work

  • ALL Firewalls including Stateful Firewall look at only 5 things.
  • IDS/IDP look for only patterns that are known
  • Anti Virus only looks for known patterns in email
  • Web Application Firewalls look at only layer 7 of OSI

How Does Barrier1 Stop Null Byte Positing?

  • Barrier1 “AARE Engine” learns what the requests are and compares the return strings.

It is the ability to identify the changes to a network and its traffic that give Barrier1

  • Barrier1 can inspect all 7 OSI layers in Near Real Time
PostCategoryIcon Posted in Uncategorized | PostCommentsIcon No Comments »
Search
Categories
Archives

You are currently browsing the Offical Blog blog archives for August, 2009.

Links:

Contact Us | Terms of Use | Trademarks | Privacy Statement
Copyright © 2009 Offical Blog. All Rights Reserved.

Designed by Binary Web Design, LLC.