Mel
0
I've often noted when opening demo (and real) exploits in my browser that whatever anti-virus program I'm using at the time is completely ineffective because it doesn't detect the exploit until the webpage is cached to disk. (in some cases not until I visit the exploit page a second time, presumably when the cached page is read)
By which time if I were vulnerable the exploit will have already succeeded and will have its payload running in memory, or crashed IE if that's what it is supposed to do.
So my question is: which anti-virus programs scan TCP/IP traffic before the browser 'sees' it.
By which time if I were vulnerable the exploit will have already succeeded and will have its payload running in memory, or crashed IE if that's what it is supposed to do.
So my question is: which anti-virus programs scan TCP/IP traffic before the browser 'sees' it.























