International Journal Of Electronics,Communication And Soft Computing Science &Engineering (IJECSCSE)
SigFree-online signature-free out-of-the-box application-layer method for blocking code-injection buffer overflow attack messages targeting at various Internet services such as web service. Motivated by the observation that buffer overflow attacks typically contain executables whereas legitimate client requests never contain executables in most Internet services, SigFree blocks attacks by detecting the presence of code. SigFree is signature free, thus it can block new and unknown buffer overflow attacks. The authors show that the attack packets tested in their experiments with very few false positives.