[unisog] identifying packed executables

Ray Strubinger rays at phhp.ufl.edu
Mon May 9 12:48:46 GMT 2005


>>> michael.holstein at csuohio.edu 5/6/2005 4:57:36 PM >>>
before everyone blasts me for not reading "UNIX for Dummies", I know 
what '/usr/bin/file' is for. There are bots being compressed with tools 
for which header sigs are NOT in '/etc/magic'

On that note .. anyone have a better copy of /etc/magic than what comes 
with Slackware? I know BSD's protocols and services files are better ...

The Wotsit site might be useful in locating file headers.

 http://www.wotsit.org/

-Ray




More information about the unisog mailing list