THD

THD answers the question of how do you find a chameleon Trojan horse attack when there is no contents to scan. The chameleon Trojan horse attack works because a user is able to redirect a system command to a program of the same name in a different location. The chameleon may or may not have contents. If the chameleon has contents then it can be located using VFind. If it does not have contents then THD can locate it because by definition the filename must have the same name as another program on the system or the attack will not work.

Also see:
VFind | VFind Daemon | MvFilter | CIT | UAD | THD | Bhead | JDIS | VGUI | MiniWeb Server
Robotmode | Avatar | NTI | NTI-CRYPTO | Unix Wrappers | RMI