R-fx Networks

Development

LMD 1.3.7: Milestones, Fixes & Signature Updates

by on Nov.27, 2010, under Development

Today marks the release of LMD 1.3.7, which is a minor release update that fixes a few bugs and is also the final 1.x release before version 2.0 as described in the LMD: one year later blog post. The bug list for LMD has remained very small over the last 6 months and this release […]

1 Comment :, more...

LMD: One Year Later

by on Nov.08, 2010, under Development, My Blog

With my move back to Canada behind me and adjusting to some new routines with life, its about time to get back into the mix with the projects. Though things have been slow the last couple of months, it has not stopped me from making sure regular and prompt malware updates are released. Today, we […]

7 Comments :, , , more...

Signature Updates & Threat Database

by on Sep.16, 2010, under Development, My Blog

It has been a very active month for those that pay attention to the signatures as they are released, you might have noticed a sudden spike about two weeks ago in signatures from 2,500’ish to the now 4,425 mark. The vast majority of these signatures were put up in MD5 format as a great many […]

Leave a Comment :, , more...

Understanding Signatures

by on Aug.16, 2010, under Development, My Blog

The signature naming scheme for LMD is a little confusing and something I’ve received more than a few questions about, more so about what the *.unclassed signatures mean. The naming scheme (to me) is straight forward and breaks down as follows: {SIG_FORMAT}lang/vector.type.name.ID# The ‘SIG_FORMAT’ is either HEX or MD5 reflecting the internal format of the […]

2 Comments :, more...

ATF v2: Weighted Threats

by on Aug.14, 2010, under Development, My Blog

When I first introduced you all to the Aggregate Threat Feed back in May, it was a much smaller feed with very simple ambitions — pulling together threat data at work from our network edge and host based firewalls and aggregating the data into a usable feed. The actual intention being that as an attacker […]

Leave a Comment : more...

Signature Updates: Month In Review

by on Jul.24, 2010, under Development, My Blog

Since I will be busy this coming week with other priorities, I am posting an early month in review blog on signature updates. In the last 3 weeks we have not seen a whole lot of action on in-the-wild malware, most of what is propagating at the moment are variants of already detected content. That […]

2 Comments :, , more...

Looking for something?

Use the form below to search the site:

Site Links

A few links to navigate our site quicker...