This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit


Jump to: navigation, search

A threat that plague a product.While known threats are identified based on signatures, files copied onto the hard drive upon installation, registry keys, protocol analysis and others; we identify unknown threats by studying the product's behavior over a period of time.

'''The following is a description of few threats:-'''

REVERSE TROJAN(Server-to-Client):

The most dangerous and malicious program where the server is active and the client passive. This kind of attack can bypass firewalls, IDS, anti-virus softwares, spyware removal tools, etc.


A dangerous logic in an application which gets activated only on a certain predetermined date and time.


They are a snippet of malicious code that can use your PC as a front for sending unsolicited advertisement emails or chat messages or even launch DoS attacks on remote servers and/or networks.


This is another component which was designed to activate under certain conditions.


Malicious programs that secretly capture or log all the keyboard inputs, take screen shots, caputure stored passwords and transfer or mail them to the attackers located outside the trusted local network.


Like the name suggests, a Packet Sniffer can sniff network traffic travelling over the network and decode the content. The content might be anything from username and password to confidential emails.


Developers usually put some access points in the software they develop for easy navigation during development and testing. Backdoors / trapdoors are such system access points that are inadvertently left available even after software release.


They are a set of tools that enable the intruder to maintain his stealth after gaining access to the system. In other words, the intruder uses rootkits in order to maintain access to the remote system without the owner’s knowledge.


Malicious software that causes damage to a computer system. The damage can range from repeatedly displaying a pop-message to crashing the system and loss of important data. It duplicates itself within a computer system, potentially attaching itself to every software application.


Propagates through a network thus hogging the bandwidth and slowing down the network considerably.


It is a broad category of malicious software which intercepts or takes partial control of a computer's operation without the informed consent of that machine's owner or legitimate user.


Same as Virus or Worm, but also sometimes used to send confidential information like username and passwords, back to the perpetrator.

This category currently contains no pages or media.