Hacker News new | past | comments | ask | show | jobs | submit login

I’ve worked for and consulted at several security places that have built “agents”. These tools are typically C, C++ or Objective-C so that they have the smallest footprint possible for the platform they’re deployed on. Some are for scanning and reporting binaries for viruses, worms etc. some have “remediation” features that let the agent execute commands sent to it remotely. Most of them can be updated in place remotely.

Most of these tools are janky, poorly tested and I’m sure contain dozens of vulnerabilities of their own.

Edit: also, it’s invariable one dude with poor hygiene working on the agent at these companies. He’s usually at the back, in the closet. Most of the engineering work is on he backend and reporting, so the agent gets no peer review or formal security review.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: