dslreports logo
 
    All Forums Hot Topics Gallery
spc
Search similar:


uniqs
1032

Kilroy
MVM
join:2002-11-21
Saint Paul, MN

Kilroy

MVM

Free tool detects 'government surveillance spyware'

Free tool detects 'government surveillance spyware'

[Sarcasm ON]
Soon to be followed by the story that Amnesty International, Privacy International, Digitale Gesellschaft and Electronic Frontier Foundation have teamed up to hurt the children and allow the terrorist to win.
[Sarcasm OFF]

StuartMW
Premium Member
join:2000-08-06

3 recommendations

StuartMW

Premium Member

Proudly brought to you by NSA enterprises
19579823 (banned)
An Awesome Dude
join:2003-08-04

19579823 (banned) to Kilroy

Member

to Kilroy

I reckon this SW wont last long!!
gnome84
join:2014-04-12
Saint Paul, MN

1 edit

gnome84 to Kilroy

Member

to Kilroy

Re: Free tool detects 'government surveillance spyware'

Canadian baseband modems can detect government surveillance spyware

»bb.osmocom.org/trac/wiki ··· y/People
psloss
Premium Member
join:2002-02-24

psloss to Kilroy

Premium Member

to Kilroy
»github.com/botherder/detekt
quote:
Detekt tries to detect the presence of pre-defined patterns that have been identified through the course of our research to be unique identifiers that indicate the presence of a given malware running on the computer.
.
.
.
Beware that it is possible that Detekt may not successfully detect the most recent versions of those malware families. Indeed, some of them will likely be updated in response to this release in order to remove or change the patterns that we identified. In addition, there may be existing versions of malware, from these families or from other providers, which are not detected by this tool. If Detekt does not find anything, this unfortunately cannot be considered a clean bill of health.

I wish them good luck, but this scratches my cynic itch.

sivran
Vive Vivaldi
Premium Member
join:2003-09-15
Irving, TX

sivran

Premium Member

It's not much more than a highly-specialized malware scanner.

So, where did they get the samples they used to develop the signatures? What's their plan to continue to get more? Seems like that's going to be a difficult task.

Link Logger
MVM
join:2001-03-29
Calgary, AB

Link Logger to Kilroy

MVM

to Kilroy
snicker

norwegian
Premium Member
join:2005-02-15
Outback

norwegian to Kilroy

Premium Member

to Kilroy
It seems to only run x32 and there was an SideBySide error.
I will admit this is on Win 10, build 9879 and this computer is running a x64 O/S.
Approx time for scan 45 mins.

- System  
  - Provider  
   [ Name]  SideBySide 
 
  - EventID 33 
 
   [ Qualifiers]  49409  
   Level 2  
   Task 0  
   Keywords 0x80000000000000 
 
  - TimeCreated  
   [ SystemTime]  2014-11-21T10:44:40.000000000Z 
 
   EventRecordID 7197  
   Channel Application  
   Computer   
   Security  
 
- EventData  
   Microsoft.VC90.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" 
    
   C:\Users\xxxxx\AppData\Local\Temp\_MEI21802\detekt.exe.manifest 
 

StuartMW
Premium Member
join:2000-08-06

2 recommendations

StuartMW

Premium Member

said by norwegian:

Approx time for scan 45 mins.

Which, coincidentally, is how much time it takes to upload your stuff to ASIO, the NSA and GCHQ

norwegian
Premium Member
join:2005-02-15
Outback

norwegian

Premium Member


It requests you work offline so there is no internet connection, but hey, if I'm paranoid, then the 45 minutes collected a lot of local data that was uploaded on re-connection of a beta product and really low levels of personal data.