Malware Analysis Archive
+
What is memory forensic? Memory forensics is forensic analysis of a computer‘s memory dump. Its primary application is investigation of advanced computer attacks which are stealthy enough to avoid leaving data on the …
+
Radare2 (also known as r2) is a complete framework for reverse-engineering and analyzing binaries; composed of a set of small utilities that can be used together …
By Andreas Griffin
April 1, 2019
+
What is GHIDRA? Ghidra is a software reverse engineering (SRE) framework created and maintained by the National Security Agency Research Directorate. This framework includes a suite of full-featured, …
+
Continue to research about ELF. Today I will analyze dynamic linker. Then, I will introduce some tools like obfuscator tool for ELF file. 1. DYNAMIC LINKER: …
By Andreas Griffin
October 18, 2018
+
In the previous chapter, I told about ELF file types, the components in ELF format and them’s struct. Today, I will show you the relocation process …
By Andreas Griffin
October 11, 2018
+
Hi, my friends. Today, I present about the ELF (Executable and Linking Format) format and introduce some tools. There are three main types of file: Relocatable …
By Andreas Griffin
October 4, 2018
+
Researchers have identified what they are calling an Early Bird code injection technique used by the Iranian group APT33 to burrow the TurnedUp malware inside infected …
+
When you want to debug a program but it has Detect Debug mechanism so we have to do to be able to continue? In this post, …
By Cloudi
October 4, 2017
