Defcon 16: Race to Zero

Congratulations to Nick Harbour, Steve Davis, and Peter Silberman from Mandiant were the winners of the Race to Zero contest. I got to talk to some of the team and was really impressed with their technique. Hopefully I can convince the team to do a writeup on how they won here. There were some pretty innovative ideas that were used during the entire contest.

Rob Lemos at Security Focus wrote an article about the event.

Offensive Computing provided the samples for the contest. I tried to pick out a combination of newer viruses with poor detection, along with older ones that should be well detected. Here's a list of the ones provided:

Sasser D
Stoned - Yes, this is the old DOS virus.