Search results for "Analysis"
-
272Reverse EngineeringPortEx – Java library to analyse Portable Executable files with a special focus on malware analysis and PE malformation robustness
PortEx is a Java library for static malware analysis of Portable Executable files. Its focus is on PE malformation robustness, and anomaly...
-
296MalwareEMOTET Malware Hijacking the Windows API & Evade the Sandbox Analysis
A wide Spread EMOTET malware emerging again with new stealthy capabilities to hijack the Windows API and evade the sandbox detection which also gives...
-
238IncidentsNew EMOTET Hijacks a Windows API, Evades Sandbox and Analysis
We discussed the re-emergence of banking malware EMOTET in September and how it has adopted a wider scope since it wasn’t picky about the...
-
237Vulnerability AnalysisFake Sandbox Processes (FSP) – Tool to simulate fake processes of analysis sandbox/VM software
This small script will simulate fake processes of analysis, sandbox and/or VM software that some malware will try to avoid. You can...
-
173Vulnerability AnalysisDex-Oracle – A pattern based Dalvik deobfuscator which uses limited execution to improve semantic analysis
A pattern based Dalvik deobfuscator which uses limited execution to improve semantic analysis. Also, the inspiration for another Android deobfuscator: Simplify. Before...
-
235PentestParrot Security OS New Released with a Collection of tools for Penetration Testing and Forensic Analysis
Parrot Security Operating System is a Penetration Testing & Forensics Distro dedicated to Ethical Hackers & Cyber Security Professionals. With the new...
-
247System AdministrationAssemblyline – Distributed File Analysis Framework
Assemblyline is a scalable distributed file analysis framework. It is designed to process millions of files per day but can also be installed...
-
202MalwareAssemblyline – Canada’s CSE intelligence Agency releases its malware analysis tool
Canada’s Communications Security Establishment (CSE) intel agency has released the source code for one of its malware analysis tools dubbed Assemblyline. The...
-
245Network Toolspsad – Intrusion Detection and Log Analysis with iptables
The Port Scan Attack Detector psad is a lightweight system daemon written in is designed to work with Linux iptables/ip6tables/firewalld firewalling code...
-
338Binary AnalysisPharos – Static Binary Analysis Framework
The Pharos static binary analysis framework is a project of the Software Engineering Institute at Carnegie Mellon University. The framework is designed...
-
220MalwareCSE CybSec ZLAB Malware Analysis Report: NotPetya
I’m proud to share with you the first report produced by Z-Lab, the Malware Lab launched by the company CSE CybSec. Enjoy...
-
366Computer ForensicsXplico – Network Forensic Analysis Tool
Xplico is an open source network forensic analysis tool that supports HTTP, SIP, IMAP, POP, SMTP, TCP, UDP, IPv6, Facebook, MSN, RTP, IRC,...
-
352Hackers RepositoryDroid-Hunter – Android application vulnerability analysis and Android pentest tool
Android application vulnerability analysis and Android pentest tool .---. .----------- / __ / ------ / / ( )/ ----- ╔╦╗╦═╗╔═╗╦╔╦╗ ╦ ╦╦...
-
172Hackers RepositoryDroid-Hunter – Android application vulnerability analysis and Android pentest tool
Android application vulnerability analysis and Android pentest tool .---. .----------- / __ / ------ / / ( )/ ----- ╔╦╗╦═╗╔═╗╦╔╦╗ ╦ ╦╦...
-
247Computer ForensicsFoxAnalysis – Firefox Internet History Analysis Tool
FoxAnalysis is a forensic software tool for extracting and analyzing internet history from the Firefox web browser. Many types of data can be...
-
403Malware AnalysisFLARE VM – a fully customizable, Windows-based security distribution for malware analysis, incident response & penetration testing
FLARE VM is the first of its kind freely available and open sourced Windows-based security distribution designed for reverse engineers, malware analysts,...
-
122MalwareMACOS FRUITFLY BACKDOOR ANALYSIS RENDERS NEW SPYING CAPABILITIES
LAS VEGAS—The FruitFly backdoor became a known entity in January, but it’s a good bet that for years it had been in...
-
96VulnerabilitiesEnglishmansDentist Exploit Analysis
Introduction We are continuing our series of blog posts dissecting the exploits released by ShadowBrokers in April 2017. After the first two...
-
326Malware AnalysisMalware Analysis Tools and Cheat list
A large number of computer intrusions involve some form of malicious software (malware), which finds its way to the victim’s workstation or...
-
190VulnerabilitiesOnePlus OTAs: Analysis & Exploitation
In this blog post we present new trivial vulnerabilities found on OnePlus One/X/2/3/3T OxygenOS & HydrogenOS. They affect the latest versions (4.1.3/3.0)...
-
254MalwareDoublePulsar Initial SMB Backdoor Ring 0 Shellcode Analysis
One week ago today, the Shadow Brokers (an unknown hacking entity) leaked the Equation Group’s (NSA) FuzzBunch software, an exploitation framework similar...
