Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Security
General Security Discussions
How Well do You Understand False Positives in Forensic Reports?
Message
<blockquote data-quote="Trident" data-source="post: 1041766" data-attributes="member: 99014"><p>This is an assignment for fun, and for even more fun I will also allow bot to reply (just to prove that there is a lot beyond AI capabilities).</p><p></p><p>With the permission of a user, I’ve gathered few Check Point Forensic reports (they are really detailed). The reports represent few incidents (real attacks). One of them is a false positive.</p><p></p><p>Who will be able to identify the false positive?</p><p></p><p>It is a good practice for anyone who is looking at business solutions for home use. And for anyone interested in malware/anti-malware.</p><p></p><p>Reports are compressed in 7z format.</p><p>Every folder name represent the incident ID.</p><p></p><p><a href="https://www.upload.ee/files/15266686/Forensic_Reports.7z.html" target="_blank">Link to reports</a></p><p><a href="https://www.virustotal.com/gui/file/a5ef8fe6dd4af42c70478101693cc2f344b22e39410adfa35ba5797f6175ab35/summary" target="_blank">Enclosed content scanned at VT (0/59)</a></p><p>SHA256: a5ef8fe6dd4af42c70478101693cc2f344b22e39410adfa35ba5797f6175ab35</p><p>Size uncompressed: ~7 MB</p><p>Maximum time spent should be <15 min.</p></blockquote><p></p>
[QUOTE="Trident, post: 1041766, member: 99014"] This is an assignment for fun, and for even more fun I will also allow bot to reply (just to prove that there is a lot beyond AI capabilities). With the permission of a user, I’ve gathered few Check Point Forensic reports (they are really detailed). The reports represent few incidents (real attacks). One of them is a false positive. Who will be able to identify the false positive? It is a good practice for anyone who is looking at business solutions for home use. And for anyone interested in malware/anti-malware. Reports are compressed in 7z format. Every folder name represent the incident ID. [URL='https://www.upload.ee/files/15266686/Forensic_Reports.7z.html']Link to reports[/URL] [URL='https://www.virustotal.com/gui/file/a5ef8fe6dd4af42c70478101693cc2f344b22e39410adfa35ba5797f6175ab35/summary']Enclosed content scanned at VT (0/59)[/URL] SHA256: a5ef8fe6dd4af42c70478101693cc2f344b22e39410adfa35ba5797f6175ab35 Size uncompressed: ~7 MB Maximum time spent should be <15 min. [/QUOTE]
Insert quotes…
Verification
Post reply
Top
