Difference between pages "Malware analysis" and "Prevx"

From ForensicsWiki
(Difference between pages)
Jump to: navigation, search
(External Links)
 
(External Links)
 
Line 1: Line 1:
Analyzing [[malware]], or malicious software, is more of an art than a technique. Because of the wide nature of these products, there are limitless ways to hide functionality.
+
{{Deprecated Software}}
  
Some common tools for malware analysis include simple programs like [[strings]]. More complex analysis can be conducted by looking at the headers of executables with programs like [[PEiD]] and [[PeExplorer]]. Finally, the most complete analysis can be done with debuggers like [[IDA Pro]] and [[OllyDbg]].
+
{{expand}}
  
== See Also ==
+
Very helpful site that identifies/tracks/analyzes 100,000 new executable programs per day around the globe. They have a heuristic engine capable of sorting the good from the bad/harmful ([[malware]]).
* [[Malware]]
+
* [[List of Malware Analysis Tools]]
+
  
 
== External Links ==
 
== External Links ==
* [http://nakedsecurity.sophos.com/2013/10/11/anatomy-of-an-exploit-ie-zero-day-part-1/ Anatomy of an exploit - inside the CVE-2013-3893 Internet Explorer zero-day - Part 1], by Paul Ducklin on October 11, 2013
+
* [http://fileinfo.prevx.com/ Project site] - no longer works
* [http://nakedsecurity.sophos.com/2013/10/25/anatomy-of-an-exploit-inside-the-cve-2013-3893-internet-explorer-zero-day-part-2/ Anatomy of an exploit - inside the CVE-2013-3893 Internet Explorer zero-day - Part 2], by Paul Ducklin on October 25, 2013
+
* [http://archive.today/fileinfo.prevx.com Project site - archived version]
* [http://spresec.blogspot.com/2014/03/uroburos-rootkit-hook-analysis-and.html?m=1 Uroburos Rootkit Hook Analysis and Driver Extraction], SP Security Blog, March 20, 2014
+
 
+
[[Category:Malware]]
+

Revision as of 03:36, 25 June 2014

40px-Ambox warning pn.png

This tool is deprecated.
The tool that this page describes is deprecated and is no longer under active development.
Further information might be found on the discussion page.

Information icon.png

Please help to improve this article by expanding it.
Further information might be found on the discussion page.

Very helpful site that identifies/tracks/analyzes 100,000 new executable programs per day around the globe. They have a heuristic engine capable of sorting the good from the bad/harmful (malware).

External Links