Security Testing 简明教程

Security Testing - Malicious Software

Malicious software (malware) is any software that gives partial to full control of the system to the attacker/malware creator.

Malwares

Various forms of malware are listed below −

  1. Virus − A virus is a program that creates copies of itself and inserts these copies into other computer programs, data files, or into the boot sector of the hard-disk. Upon successful replication, viruses cause harmful activity on infected hosts such as stealing hard-disk space or CPU time.

  2. Worm − A worm is a type of malware which leaves a copy of itself in the memory of each computer in its path.

  3. Trojan − Trojan is a non-self-replicating type of malware that contains malicious code, which upon execution results in loss or theft of data or possible system harm.

  4. Adware − Adware, also known as freeware or pitchware, is a free computer software that contains commercial advertisements of games, desktop toolbars, and utilities. It is a web-based application and it collects web browser data to target advertisements, especially pop-ups.

  5. Spyware - 间谍软件是一种入侵软件,它匿名监视用户,使用户的计算机面临敏感信息泄露的风险。间谍软件利用用户和应用程序漏洞,通常会附着在免费在线软件下载或用户点击的链接上。

  6. Rootkit - rootkit 是黑客用来获取计算机/网络管理员级别访问权限的软件,通常通过安装窃取的密码或利用系统漏洞来实现,而且受害者并不知情。

Preventive Measures

可以采取以下措施来避免系统中存在恶意软件:

  1. 确保操作系统和应用程序已安装最新的补丁程序/更新。

  2. 切勿打开可疑电子邮件,尤其是带附件的电子邮件。

  3. 从互联网下载时,务必检查所安装内容。切勿简单点击“确定”关闭弹出窗口。在安装应用程序之前,请验证发行者。

  4. Install anti-virus software.

  5. 确保定期扫描和更新防病毒程序。

  6. Install firewall.

  7. 始终启用和使用浏览器和应用程序提供的安全功能。

Anti-Malware Software

以下软件有助于从系统中删除恶意软件:

  1. Microsoft Security Essentials

  2. Microsoft Windows Defender

  3. AVG Internet Security

  4. Spybot - 搜索和摧毁

  5. Avast!个人使用家庭版

  6. Panda Internet Security

  7. MacScan 适用于 Mac OS 和 Mac OS X