Ask a Question

What is Testing Weaponized Documents and Malicious Scripts?

in Technology by

What is Testing Weaponized Documents and Malicious Scripts?

Please log in or register to answer this question.

1 Answer

0 votes
by
Testing Weaponized Documents and Malicious Scripts
Testing Weaponized Documents and Malicious Scripts

There are various approaches to detecting weaponized documents.

Approaches to detecting weaponized documents:

  • Heuristics that evaluate the macros or Visual Basic Scripts in the document, as part of static analysis by using a file scanner.

  • Behavior monitoring of the file being executed in a sandbox or emulator.

  • Lockdown tools that prevent the use of PowerShell WScript, CScript, and so on.

  • Context-aware run time behavior monitoring, that can detect a malicious combination of activity, like a when a word document from an email is opened, it runs WScript or PowerShell to download and install another executable.

However, while testing, it is important to understand how the attack was blocked, as much as finding out if the attack was blocked.

Related questions

0 votes
Q: Which of the following can be used to prevent end users from entering malicious scripts?
    Which of the following can be used to prevent end users from entering malicious scripts? (1)Input validation (2)Server side encoding (3)Authentication (4)Dynamic encoding...
asked May 17, 2021 in Technology by JackTerrance
0 votes
Q: What Are The Problems Faced While Uploading The Cgi Scripts?
    What Are The Problems Faced While Uploading The Cgi Scripts?...
asked Sep 26, 2021 in Technology by Editorial Staff
0 votes
Q: Explain how Scripts are run in Groovy?
    Explain how Scripts are run in Groovy?...
asked Sep 25, 2021 in Technology by JackTerrance
0 votes
Q: When a server requires special configuration beyond that covered by the automated deployment scripts, it is called __________
    When a server requires special configuration beyond that covered by the automated deployment scripts, it is ... Snowflake Server Configuration Drift Server Sprawl Automation Fear...
asked Sep 15, 2021 in Technology by JackTerrance
0 votes
Q: Which SQL server table is used to hold the stored procedure scripts?
    Which SQL server table is used to hold the stored procedure scripts?...
asked Nov 9, 2020 in Technology by Editorial Staff
0 votes
Q: How do you execute multiple QTP scripts automatically?
    How do you execute multiple QTP scripts automatically?...
asked Oct 19, 2020 in Technology by JackTerrance
0 votes
Q: Refresh scripts imported with importScripts in service worker
    I have a website which has a service worker like: // Import a script from another domain importScripts(' ... Questions for Interview, JavaScript MCQ (Multiple Choice Questions)...
asked May 4, 2022 in Education by JackTerrance
0 votes
Q: How to call a method before another from 2 different scripts?
    I am trying to call a method from the script Dice and after that method is executed the value of ... JavaScript Questions for Interview, JavaScript MCQ (Multiple Choice Questions)...
asked Apr 2, 2022 in Education by JackTerrance
0 votes
Q: How to insert just a part of a full page loaded using $.ajax() while executing embedded scripts?
    I'm using $.ajax() to load new pages on my site if certain conditions are met (a flash-based ... , JavaScript Questions for Interview, JavaScript MCQ (Multiple Choice Questions)...
asked Mar 4, 2022 in Education by JackTerrance
0 votes
Q: Scripts will run on ___________________
    Scripts will run on ___________________ (a) Script Editors (b) Console (c) Terminal (d) GCC Compiler This ... of R Programming Select the correct answer from above options...
asked Feb 13, 2022 in Education by JackTerrance
0 votes
Q: ________________ are piece of programs or scripts that allow hackers to take control over any system.
    ________________ are piece of programs or scripts that allow hackers to take control over any system. (a) Exploits (b ... questions and answers pdf, mcq on Cyber Security pdf,...
asked Nov 4, 2021 in Education by JackTerrance
0 votes
Q: Which of the following helps to enable pig scripts?
    Which of the following helps to enable pig scripts? a)PigUnit b)PigXUnit c)PigUnitX d)None of the options...
asked Dec 11, 2020 in Education by Editorial Staff
0 votes
Q: Which one of the following is also referred to as malicious software?
    Which one of the following is also referred to as malicious software? Maliciousware Badware Ilegalware Malware...
asked Mar 6, 2021 in Technology by JackTerrance
...