What Is Quttera?
What type of exploits Quttera engines capable to detect?
What is a security vulnerability?
What is a vulnerability exploit?
How vulnerability exploits are used to propagate malware?
Why investigation of a URL sometimes takes too long?
Why investigation of a URL sometimes "stucks" on the Download stage?
What is an all-include.js file?
What Is Quttera?
Quttera is a set of heuristic and non-signature based investigation engines designed especially to detect security vulnerability exploits hidden in legitimate web-site content.
What type of exploits Quttera engines capable to detect?
Quttera capable to detect JavaScript exploits found in HTML pages, malicious PDF files and exploits hidden in images and other media content
What is a security vulnerability?
In software, security vulnerability basically refers to a bug or defect in program/application which allows cyber-criminals
to execute malicious code that further download and execute malware.
What is a vulnerability exploit?
Vulnerability exploit is a sequence of data which exploits weakness in a program/application caused by software bug or
security vulnerability. Vulnerability exploits used to invoke malicious code (program) on an attacked computer or an
internet device.
How vulnerability exploits are used to propagate malware?
The initial target of vulnerability exploit is to gain control over CPU of an attacked computer and further open a
communication channel with attacker (or dedicated server). In majority of the cases such connection is then used to download and execute
malicious software on the invaded system.
Why investigation of a URL sometimes takes too long?
In most of the cases this is due to a server load. If the large amount of users submit the URL then the speed of the
investigation decreases.You can continue browsing our site or come back later and enter the same URL to check
what is the status of its investigation.
Why investigation of a URL sometimes "stucks" on the Download stage?
After the URL is submitted you can observe its status in the "Current status" field. When the content is being downloaded the
status is changed to "Download".This stage of the process might take a while due to traffic limits or low download speed.
Basically, investigation time = download time + scan time.
What is an all-include.js file?
HTML file may contain separated JavaScript code in several places and in addition it might contain "includes" from another JavaScript files.
What is done in all-include.js file is a merge of all JavaScript sections and code found in external "include" into a single file.
Sometimes, invocation of the vulnerability exploit is located in the HTML file and the body of exploit is located in external "include".