♠ Signature-based detection compares the contents of a file to its database of
known malware signatures
♥Heuristic-based detection detects malware based on characteristics typically
used in known malware code
♣Behavioural-based detection: is based on the behavioural fingerprint of the
malware at run-time«
«is only able to detect malware after they have starting doing their malicious
actions
♦Sandbox detection based on behavioural-based detection«
«but doesn’t detect the behavioural fingerprint at run time«
«it executes the programs in a virtual environment logging what actions the
program performs
Comments
Post a Comment