DECAF (short for Dynamic Executable Code Analysis Framework) is a binary analysis platform based on QEMU. This is also the home of the DroidScope dynamic Android malware analysis platform. DroidScope is now an extension to DECAF.
Hi,
I'm using keylogger-plugin to get malware‘s behavior.
Why the keylogger-plugin gets tainted data read by many processes other than the target malicious process?
Hi, I'm using keylogger-plugin to get malware‘s behavior. Why the keylogger-plugin gets tainted data read by many processes other than the target malicious process?