-
In malware analysis in particular, it is sometimes useful to have predefined structures for the [PEB](https://docs.microsoft.com/en-us/windows/desktop/api/winternl/ns-winternl-_peb) and related struct…
-
Hey there. I've been using ShareX for a few years on my work laptop, as well as my home one, and following the update (I used the ShareX built in updater) from 14.x to 15 the software is being reporte…
-
# Feature request
## What new feature do you want?
I can see from the docs that the `yara` table _can_ support scanning via PID (process identifier).
See: https://osquery.io/schema/5.5.1/#yara
…
-
While not a full-proof detection vector, using common default VM resolutions (I.e. 800x600 or 1024x768), could be a good test for default sandboxes.
https://www.bleepingcomputer.com/news/security/t…
-
When a malware is embedded in a pdf file and submitted to cuckoo, cuckoo was not able to detect it. But when the same malware is submitted to cuckoo as it is, cuckoo was able to detect it successfully…
-
Hi all,
I want to perform automatic android dynamic malware analysis
I prepared a setup with droidbox where continuously an emulator is launched and an apk installed and run for 50s.
SETUP
Do yo…
-
You can probably follow the awesome github projects like those ones:
- https://github.com/rshipp/awesome-malware-analysis
- https://github.com/carpedm20/awesome-hacking
- https://github.com/enaqx/awes…
-
Dear Tamas K. Lengyel Sir,
We are undergraduate students and working on a project on malware analysis.
Following your blog, we have successfully setup drakvuf tool and it is giving us the system…
-
Hi..
This tools is really owsome, i have an idea, how if you add some tools to get the signature, country name and location for malware analysis
Thanks for you and thanks for malcom
-
I am receiving this error for 'some' samples .. what does it mean ?
Does this indicate wrong configuration / something wrong goes during the analysis .. or
It indicates that there's something wrong…