Obfuscating Attack Payload
An IDS can be evaded by obfuscating or encoding the attack payload in a way that the target computer will reverse but the IDS will not. In the past, an adversary using the Unicode character could encode attack packets that an IDS would not recognize but that an IIS web server would decode and become attacked.
Polymorphic code is another means to circumvent signature-based IDSs by creating unique attack patterns, so that the attack does not have a single detectable signature.
Attacks on encrypted protocols such as HTTPS are obfuscated if the attack is encrypted.
Read more about this topic: Intrusion Detection System Evasion Techniques
Famous quotes containing the words obfuscating and/or attack:
“We saw one schoolhouse in our walk, and listened to the sounds which issued from it; but it appeared like a place where the process, not of enlightening, but of obfuscating the mind was going on, and the pupils received only so much light as could penetrate the shadow of the Catholic Church.”
—Henry David Thoreau (1817–1862)
“...I believed passionately that Communists were a race of horned men who divided their time equally between the burning of Nancy Drew books and the devising of a plan of nuclear attack that would land the largest and most lethal bomb squarely upon the third-grade class of Thomas Jefferson School in Morristown, New Jersey.”
—Fran Lebowitz (b. 1950)