ㄚ一
2008-03-26, 06:06 PM
使用Matousec新的測試程式對Avira Security Suite做了一個檢驗
除了BSODhook表現不如預期外,其它部分的測試與前幾個版本沒有太大的差別
AntiLeak以及自我保護能力還有很大的進步空間,同類型的產品中明顯好過ESS 3.0
測試的組件版本
http://farm4.static.flickr.com/3131/2362927557_504460cf78_o.png
AntiLeak成功阻止的情形-Coat
http://farm3.static.flickr.com/2135/2362927543_90abb340ff_o.png
AntiLeak成功阻止的情形-Echotest
http://farm3.static.flickr.com/2420/2362927545_1c0faaf372_o.png
自我保護測試失敗情形-Kill1
http://farm3.static.flickr.com/2414/2362927551_5ed30c60b9_o.png
自我保護測試失敗情形-Kill2
http://farm4.static.flickr.com/3148/2362927553_cef8666bc2_o.png
自我保護成功情形-Thermite
http://farm3.static.flickr.com/2257/2362927555_9f087315f3_o.png
詳細測試結果如下:
Product score:15% Level reached:2
* Level 1 –Score 67%
Breakout2, Coat, ECHOtest, Kill1, Kill2, Leaktest, Tooleaky, Wallbreaker1, Yalta
* Level 2 – Score 33%
AWFT1, DNStest, Ghost, Jumper, Kill3, Kill3b, Kill6, Wallbreaker3, Wallbreaker4
* Level 3 – Score 67%
AWFT3, AWFT4, DNStester, Kill3f, Kill4, Kill7, SSS2, Suspend1, Thermite
* Level 4 – Score 63%
CopyCat, CPIL, CPILSuite1, Kill3e, Kill8, Kill9, SSS, Suspend2
* Level 5 – Score 13%
Breakout1, CPILSuite2, Crash1, Crash2, Crash3, Kill3c, Kill3d, VBStest
* Level 6 – Score 26%
CPILSuite3, DDEtest, ECHOtest2, FireHole, Flank, Kill10, Kill11, Runner
* Level 7 – Score 0%
BITStest, OSfwbypass, Runner2, Schedtest, SSS3
* Level 8 – Score 0
Kill5, NewClass, Schedtest2, SSS4
* Level 9 – Driver Verifier
* Level 10 – Score 60%
BSODhook
Level 10 BsodHook測試詳細結果:
下午 02:57:03: Driver loaded.
下午 02:57:03: BSODs disabled.
下午 02:57:04: Hook found: NtCreateThread
下午 02:57:04: Hook found: NtOpenProcess
下午 02:57:04: Hook found: NtOpenThread
下午 02:57:04: Hook found: NtTerminateProcess
下午 02:57:04: Hook found: NtWriteVirtualMemory
下午 02:57:07: Probing 5 function(s) started.
下午 02:57:07: Probing function NtCreateThread(DDODDDDD) ...
下午 03:02:11: Function NtCreateThread passed the tests.
下午 03:02:11: Probing function NtOpenProcess(DDOD) ...
下午 03:02:36: NtOpenProcess(0xAD331CD0, 0xBE4D48EF, 0x07E653DE, 0xF55F0C07) caused BSOD!
下午 03:02:36: Probing function NtOpenThread(DDOD) ...
下午 03:02:36: NtOpenThread(0xAD331CD0, 0xBE4D48EF, OBJECT_ATTRIBUTES.ObjectName=0x07E653DE, 0xF55F0C07) caused BSOD!
下午 03:02:36: Probing function NtTerminateProcess(PD) ...
下午 03:03:35: Function NtTerminateProcess passed the tests.
下午 03:03:35: Probing function NtWriteVirtualMemory(PDDDB) ...
下午 03:05:35: Function NtWriteVirtualMemory passed the tests.
下午 03:05:35: Probing complete.
除了BSODhook表現不如預期外,其它部分的測試與前幾個版本沒有太大的差別
AntiLeak以及自我保護能力還有很大的進步空間,同類型的產品中明顯好過ESS 3.0
測試的組件版本
http://farm4.static.flickr.com/3131/2362927557_504460cf78_o.png
AntiLeak成功阻止的情形-Coat
http://farm3.static.flickr.com/2135/2362927543_90abb340ff_o.png
AntiLeak成功阻止的情形-Echotest
http://farm3.static.flickr.com/2420/2362927545_1c0faaf372_o.png
自我保護測試失敗情形-Kill1
http://farm3.static.flickr.com/2414/2362927551_5ed30c60b9_o.png
自我保護測試失敗情形-Kill2
http://farm4.static.flickr.com/3148/2362927553_cef8666bc2_o.png
自我保護成功情形-Thermite
http://farm3.static.flickr.com/2257/2362927555_9f087315f3_o.png
詳細測試結果如下:
Product score:15% Level reached:2
* Level 1 –Score 67%
Breakout2, Coat, ECHOtest, Kill1, Kill2, Leaktest, Tooleaky, Wallbreaker1, Yalta
* Level 2 – Score 33%
AWFT1, DNStest, Ghost, Jumper, Kill3, Kill3b, Kill6, Wallbreaker3, Wallbreaker4
* Level 3 – Score 67%
AWFT3, AWFT4, DNStester, Kill3f, Kill4, Kill7, SSS2, Suspend1, Thermite
* Level 4 – Score 63%
CopyCat, CPIL, CPILSuite1, Kill3e, Kill8, Kill9, SSS, Suspend2
* Level 5 – Score 13%
Breakout1, CPILSuite2, Crash1, Crash2, Crash3, Kill3c, Kill3d, VBStest
* Level 6 – Score 26%
CPILSuite3, DDEtest, ECHOtest2, FireHole, Flank, Kill10, Kill11, Runner
* Level 7 – Score 0%
BITStest, OSfwbypass, Runner2, Schedtest, SSS3
* Level 8 – Score 0
Kill5, NewClass, Schedtest2, SSS4
* Level 9 – Driver Verifier
* Level 10 – Score 60%
BSODhook
Level 10 BsodHook測試詳細結果:
下午 02:57:03: Driver loaded.
下午 02:57:03: BSODs disabled.
下午 02:57:04: Hook found: NtCreateThread
下午 02:57:04: Hook found: NtOpenProcess
下午 02:57:04: Hook found: NtOpenThread
下午 02:57:04: Hook found: NtTerminateProcess
下午 02:57:04: Hook found: NtWriteVirtualMemory
下午 02:57:07: Probing 5 function(s) started.
下午 02:57:07: Probing function NtCreateThread(DDODDDDD) ...
下午 03:02:11: Function NtCreateThread passed the tests.
下午 03:02:11: Probing function NtOpenProcess(DDOD) ...
下午 03:02:36: NtOpenProcess(0xAD331CD0, 0xBE4D48EF, 0x07E653DE, 0xF55F0C07) caused BSOD!
下午 03:02:36: Probing function NtOpenThread(DDOD) ...
下午 03:02:36: NtOpenThread(0xAD331CD0, 0xBE4D48EF, OBJECT_ATTRIBUTES.ObjectName=0x07E653DE, 0xF55F0C07) caused BSOD!
下午 03:02:36: Probing function NtTerminateProcess(PD) ...
下午 03:03:35: Function NtTerminateProcess passed the tests.
下午 03:03:35: Probing function NtWriteVirtualMemory(PDDDB) ...
下午 03:05:35: Function NtWriteVirtualMemory passed the tests.
下午 03:05:35: Probing complete.