Obfuscating Attack Payload
An IDS can be evaded by obfuscating or encoding the attack payload in a way that the target computer will reverse but the IDS will not. In the past, an adversary using the Unicode character could encode attack packets that an IDS would not recognize but that an IIS web server would decode and become attacked.
Polymorphic code is another means to circumvent signature-based IDSs by creating unique attack patterns, so that the attack does not have a single detectable signature.
Attacks on encrypted protocols such as HTTPS are obfuscated if the attack is encrypted.
Read more about this topic: Intrusion Detection System Evasion Techniques
Famous quotes containing the words obfuscating and/or attack:
“We saw one schoolhouse in our walk, and listened to the sounds which issued from it; but it appeared like a place where the process, not of enlightening, but of obfuscating the mind was going on, and the pupils received only so much light as could penetrate the shadow of the Catholic Church.”
—Henry David Thoreau (1817–1862)
“If you attack the establishment long enough and hard enough, they will make you a member of it.”
—Art Buchwald (b. 1925)