Andy Steingruebl @asteingruebl@infosec.exchange · Jun 25, 2013 · 4:12 AM UTC

Andy Steingruebl @asteingruebl@infosec.exchange @asteingruebl

25 Jun 2013

Why do modern OSs support executable compression? Any "regular" sw that uses it? Couldn't we turn it off and make life harder for malware?

Chris Wysopal · Jun 25, 2013 · 4:32 AM UTC

Chris Wysopal @WeldPond

25 Jun 2013

@asteingruebl agreed. Even better, SW should be verifiable and not obfuscated. I wrote about this in 2009. securityfocus.com/columnists…

Jeremiah Grossman · Jun 25, 2013 · 4:34 AM UTC

Jeremiah Grossman @jeremiahg

25 Jun 2013

@WeldPond seen what they do to javascript these days? yeesh! @asteingruebl

Chris Wysopal · Jun 25, 2013 · 2:28 PM UTC

Chris Wysopal @WeldPond

25 Jun 2013

@jeremiahg @asteingruebl we shouldn't be executing JavaScript that is hiding its behavior from static analysis.

Bil Corry · Jun 25, 2013 · 2:52 PM UTC

Bil Corry · Jun 25, 2013 · 2:52 PM UTC

Bil Corry @bilcorry

25 Jun 2013

Replying to @WeldPond

@WeldPond @jeremiahg @asteingruebl What if the JS is claimed to be intellectual property?

Jun 25, 2013 · 2:52 PM UTC

Chris Wysopal · Jun 25, 2013 · 2:56 PM UTC

Chris Wysopal @WeldPond

25 Jun 2013

Replying to @bilcorry

@bilcorry @jeremiahg @asteingruebl Refuse to run it unless you trust the source and it can be verified it hasn't been tampered with.