Resources

GitHub - jstrosch/malware-samples: Malware samples, analysis exercises and other interesting resources.
Malware samples, analysis exercises and other interesting resources. - GitHub - jstrosch/malware-samples: Malware samples, analysis exercises and other interesting resources.
github.com
Malware templates: https://github.com/jstrosch/malware-samples/tree/master/maldoc_templates​
PEB: Where Magic Is Stored
As a reverse engineer, every now and then you encounter a situation where you dive deeper into the internal structures of an operating system as usual. Be it out of simple curiosity, or because you need to understand how a binary uses specific parts of the operating system in certain ways . One of the more interesting structures in Windows is the Process Environment Block/PEB. In this article, I’d like to introduce you to this structure and talk about various use cases of how adversaries can abu...
malware.news
Malware analysis with dynamic binary instrumentation (FRIDA)
Malware Analysis with Dynamic Binary Instrumentation Frameworks
Malware reverse engineers perform dynamic code analysis to inspect a program during execution. This typically involves using a debugger to monitor a suspect process. A complementary approach is to interrogate a running process using Dynamic Binary Instrumentation (DBI) frameworks.
blogs.blackberry.com
GitHub - OALabs/frida-extract: Frida.re based RunPE (and MapViewOfSection) extraction tool
Frida.re based RunPE (and MapViewOfSection) extraction tool - GitHub - OALabs/frida-extract: Frida.re based RunPE (and MapViewOfSection) extraction tool
github.com
GitHub - N1ght-W0lf/HawkEye: Malware dynamic instrumentation tool based on frida framework
Malware dynamic instrumentation tool based on frida framework - GitHub - N1ght-W0lf/HawkEye: Malware dynamic instrumentation tool based on frida framework
github.com
​
Online Tools
Next - Mobile
Tools
Last updated 4 weeks ago