Tag Archives: Microsoft

The “hidden” backdoor – VirTool:WinNT/Exforel.A

Source: Microsoft Malware Protection Center by Chung Feng In this article “Recently we discovered an advanced backdoor sample – VirTool:WinNT/Exforel.A. Unlike traditional backdoor samples, this backdoor is implemented at the NDIS (Network Driver Interface Specification) level. VirTool:WinNT/Exforel.A implements a simple private TCP/IP stack and hooks NDIS_OPEN_BLOCK for the TCP/IP protocol, as shown in Figure 1.”  

Improving Web Services Security Guide

Source: Microsoft Patterns & Practices Introduction This guide shows you how to improve security for your WCF services. It also shows you how to effectively design your authentication, authorization, and communication strategies for Microsoft® Windows Communication Foundation. The information in this guide is based on practices learned from customer feedback and product support, as well as experience gained… Read More »

Microsoft Security Development Lifecycle

Source: Microsoft Introduction The purpose of this paper is to illustrate the core concepts of the Microsoft Security Development Lifecycle (SDL) and to discuss the individual security activities that should be performed in order to claim compliance with the SDL process. This paper presents: A brief overview of the Microsoft SDL. An overview of the Microsoft SDL Optimization… Read More »