-
FLOSS was working during FLAREon when I went to update the VM tools I received an error I can't reproduce since the FLOSS icon fails to run it and defaults to a CMD window.
Downloaded the Floss zip…
-
Have you ever run strings on a malware executable and its output provided you with IP addresses, file names, registry keys, and other indicators of compromise (IOCs)?
https://www.fireeye.com/blog/th…
-
this is an issue because if you also install vivisect, then it fails to import due to this missing module.
-
### Description
With version 2.0.0 (installed via pip) when running capa with no signatures argument it reports an error and exit. The issue seems to be in `get_default_signatures` method which tri…
-
I get the `FATAL: Bad xdigit: error` error when trying to use sigmake on a file with long lines, such as this one:
https://slexy.org/view/s2UyxIhZQR
Here's the .pat file with quite a few problem l…
-
We need a parser for the WMI CIM
From: https://msdn.microsoft.com/en-us/library/ms974579.aspx
```
objects.data. CIM repository where managed resource definitions are stored.
```
File typica…
-
I tried to run the MSDN Annotations plugin but it turns out that it does not work well with IDA 7.1 Pro.
It creates a Segment .msdn with content but it does not change the Symbols as expected.
…
-
When Fakenet is run on a Windows machine with multiple DNS servers configured (for instance, via DHCP), the following error message is encountered early on:
```
04/09/18 04:18:16 PM [ Div…
-
Hi !
I found your work thanks to reddit, and it turns out that i was working on the same thing as you, but for the [FLARE VM](https://github.com/fireeye/flare-vm/issues): [packer-flare](https://git…
-
Please decode strings from some simple obfuscation:
![string1](https://user-images.githubusercontent.com/6576335/44095047-134280b8-9fd8-11e8-98c0-ad19ff6c95cf.png)
It might be already implemented,…