GitHub - Bombadil-Systems/zombie-zip: Malformed ZIP archive that evades antivirus detection by declaring Method=0 (stored) while containing DEFLATE-compressed payload.

submitted by

https://github.com/bombadil-systems/zombie-zip

Not solved problem since 20 years

See also https://kb.cert.org/vuls/id/976247

2
6

Log in to comment

Hot Top New Old

How is this different from just any simple encryption of a valid zip?

 reply
1
OP

It isn’t, that is the problem for AVs to detect it

 reply
1
Insert image