Detection of alphanumeric shellcodes using similarity index

Author

Verma, Naveen ; Mishra, Vivekanand ; Singh, V.P.

Author_Institution

Dept. of Comput. Sci. & Eng., Thapar Univ., Patiala, India

fYear

2014

fDate

24-27 Sept. 2014

Firstpage

1573

Lastpage

1577

Abstract

Shellcodes are widely used to exploit applications. Shellcodes can breach security and privacy to an unimaginable extent. Poor Programming results in various bugs that give attacker a chance to exploit an application. Exploiting an application allows attacker to inject a malicious code and transfer control of program to the injected code. The malicious code injected during exploitation is usually a shellcode. Detection of such shellcodes which are used for exploitation is an issue which concerns all the anti-virus companies. Attackers generally write shellcode in a way to bypass anti-virus engines. One such type of shellcodes is alphanumeric shellcodes. Despite of extensive advancement in detection technology detecting alphanumeric shellcodes still is not possible. This research paper presents a study of these kinds of alphanumeric shellcodes, effectiveness of current technology in detecting such shellcodes and also presents a novel approach to detect alphanumeric shellcodes.

Keywords

computer viruses; data privacy; alphanumeric shellcodes detection; anti-virus engines; antivirus companies; attacker; exploitation; injected code; malicious code; privacy; security; similarity index; virus detection; Conferences; Encoding; Engines; Indexes; Intrusion detection; Libraries; Alphanumeric Shellcode; Security; Shellcodes; anti-virus; exploits; virus detection;

fLanguage

English

Publisher

ieee

Conference_Titel

Advances in Computing, Communications and Informatics (ICACCI, 2014 International Conference on

Conference_Location

New Delhi

Print_ISBN

978-1-4799-3078-4

Type

conf

DOI

10.1109/ICACCI.2014.6968372

Filename

6968372