Reversing - Secrets of Reverse Engineering

最新推荐文章于 2025-12-01 22:37:18 发布

原创最新推荐文章于 2025-12-01 22:37:18 发布 · 2k 阅读

0 ·

CC 4.0 BY-SA版权

文章标签：

#statistics #internet #access #汇编 #idea #server

本文摘录自《Reversing: Secrets of Reverse Engineering》，详细介绍了五种主要恶意软件的定义：病毒，一种通常带有恶意目的的自我复制程序；蠕虫，通过网络自我复制且不需要直接人为交互的恶意程序；特洛伊木马，表面上无辜但实际上隐藏恶意元素的程序；后门，为攻击者创建隐蔽通道以控制或监视受害系统的软件；广告软件，强制向最终用户显示未经请求的广告并收集用户浏览习惯的程序。

<< Reversing - Secrets of Reverse Engineering >> 是一本关于逆向工程不可多得的好书，谈到了逆向工程的方方面面，如果你有一定的编程经验，对汇编程序不反感，又想了解逆向工程的话，我强烈推荐您读这本书(网上可下载)。

这里仅摘录书中关于恶意软件分类的定义。

malicious software category

Viruses : self-replicating programs that usually have a malicious intent.

Worms: fundamentally similar to a virus in the sense that it is a self-replcating malicious program. The difference is that a worm self-replicates using a netword(such as the Internet), and the replication process doesn't require direct human interaction.

Trojan Horese: The general idea is that a Trojan horse is an innocent artifact openly delivered through the front door when it in fact contains a malicous element hidden somewhere inside of it.

Backdoors: A backdoor is a type of malicious software that creates a(usually covert) access channel that the attaker can use for connecting,controlling,spying,or otherwise interacting with the victim's system.

    Adware: Adware is programs that force unsolicited advertising on end users. Gathers various statistics regarding the end user's browsing and shopping habits(sometimes transmitting that data to a centralized server) and uses that information to display targeted ads to the end user.