Press Careers Contact us

VSN Encrypt

  
WhitePapers Partners Financial Services
VSN Encrypt
Home
 
Product Family
> NG- 1000 Series
> NG- 5000 Series
> NG- 8000 Series
 
Finjan Technologies
> Application-Level
   Behaviour Blocking
> Vulnerablilty Anti.dote
> Anti Spyware
> Anti Virus
> URL Filtering
 
Finjan Presentations
> NG- 1000 Series
> NG- 5000 Series
 
Security Testing Center
> Test your Security    Policy
 
 
News
Click item for full story
© Visus IT Ltd 2005

Finjan

Security Testing Center - Level One Test

Direct Download Executable Test

What This Test Does:
Java Script is actually the lowest common denominator on the web. Almost every web page contains some amount of Java Script.
This Java test creates a new folder on your Windows Desktop directory named "You Have Been Hacked!" and copies several of your personal files into it.
Please allow several seconds for the test to start, performance will vary upon connection speed.

How It Does It:
After clicking on Test Me, a security box will open. You can either run the test now, or save the file and run it later.
After you run the test, a folder called "You Have Been Hacked!" will be created on your desktop. Within the folder contents you'll see several files taken from various parts of your computer.
In addition, a TXT file will be created in the folder. Open the TXT file and you will see your user name and domain name. This information was collected from your Windows network details, demonstrating the ability of malicious Java Script to steal sensitive information.

System Requirements:
Windows 9x/NT/ME/2K w/ IE and Netscape Browsers

Entry Point:
The Internet.

Danger:
Using this technique a hacker could:

  • Steal sensitive information from your computer
  • Write/delete/move information on your computer
  • Open an FTP or Telnet session on your computer without your knowledge

Actual Exploits:
JS-Seeker
Java_Byte_Verify

How to Uninstall:
If you selected to run the test, you'll need to clean your Internet files. Go to Internet Explorer, Tools, Internet Options, General, Temporary Internet Files, Delete Files.

If you selected to save the file and then run the test, you'll need to delete the file Finjan_JS_Demo.JS from the location to which it was saved.

Delete the "You've Been Hacked" folder from your desktop. It contains only copies of files. No damage will be done to your computer or your data.

How Vital Security Protects You:
Three of Finjan's Vital Security Products can provide proactive defense against this type of attack:

    Vital Security for Web
  • By analyzing the behavior of active content, Vital Security for Web ensures that damaging exploits are stopped before they enter your network.
    Vital Security for E-Mail
  • By analyzing attachments by more than just their extension, Vital Security for E-Mail ensures that harmful attachments won't be sent to users' in boxes.
    Vital Security for Clients
  • By analyzing what calls an application makes to your operating system, Vital Security for Clients ensures that executables can't perform damaging operations.

It is strongly recommended to save the test file to your computer before opening.

Finjan Partner
Finjan White Papers

 

  
 
Please enquire
 
Name:
Email:
Telephone:
Service Required:
How can we help?