Obfuscating Attack Payload
An IDS can be evaded by obfuscating or encoding the attack payload in a way that the target computer will reverse but the IDS will not. In the past, an adversary using the Unicode character could encode attack packets that an IDS would not recognize but that an IIS web server would decode and become attacked.
Polymorphic code is another means to circumvent signature-based IDSs by creating unique attack patterns, so that the attack does not have a single detectable signature.
Attacks on encrypted protocols such as HTTPS are obfuscated if the attack is encrypted.
Read more about this topic: Intrusion Detection System Evasion Techniques
Famous quotes containing the words obfuscating and/or attack:
“We saw one schoolhouse in our walk, and listened to the sounds which issued from it; but it appeared like a place where the process, not of enlightening, but of obfuscating the mind was going on, and the pupils received only so much light as could penetrate the shadow of the Catholic Church.”
—Henry David Thoreau (1817–1862)
“... possibly there is no needful occupation which is wholly unbeautiful. The beauty of work depends upon the way we meet it—whether we arm ourselves each morning to attack it as an enemy that must be vanquished before night comes, or whether we open our eyes with the sunrise to welcome it as an approaching friend who will keep us delightful company all day, and who will make us feel, at evening, that the day was well worth its fatigues.”
—Lucy Larcom (1824–1893)