BloomTech’s Downfall: A Long Time Coming

Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Breaking AV Software

44CON Information Security Conference via YouTube

Start learning Write review

Overview

This course aims to raise awareness about the security issues related to antivirus (AV) software. The learning outcomes include understanding the vulnerabilities in AV software, discovering and exploiting these vulnerabilities, and providing recommendations for AV companies. The course covers topics such as attacking AV engines, fuzzing statistics, and specific vulnerabilities in popular AV products like Forticlient, Kaspersky, and Comodo. The teaching method involves presenting details of vulnerabilities and remote exploitation techniques. The intended audience includes individuals interested in cybersecurity, particularly those involved in software development, IT security, or ethical hacking.

Syllabus

Intro
Breaking antivirus software
Attack surface
Attacking antivirus engines
Vulnerabilities in AV engines
Fuzzing statistics
Exploiting AV engines (more tips)
Exploiting AV engines: Summary
Forticlient
Kaspersky
Comodo Antivirus
Notes about decompression bombs
BitDefender engine
BitDefender bugs
BitDefender notes
Comodo example vulnerability
Comodo Bugs
Security enhanced software
DrWeb antivirus
DrWeb updating protocol vulnerability
eScan for Linux remote root
Conclusions
Recommendations for AV companies

Taught by

44CON Information Security Conference

Reviews

Start your review of Breaking AV Software

Start learning

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.