This session covers the concept of basic Reverse engineering. Malwares most of time uses packers and cryptors to thwart the analysis efforts, so it becomes important to understand the concept of unpacking. This presentation covers the concept of packer and a demo showing unpacking of packer called UPX. Video Demo
About Malpimp Malpimp is an advanced API tracing tool and designed to automate the reverse engineering process. In the backend it uses pydbg to hook the APIs. It provides include and exclude policies to increase the control on the application in execution. Being command-line tool makes it perfect for automation of malware as well as […]
Reverse engineering tools are essential in understanding the functionality and the inner workings of a binary. The presentation covers the concept of some of the commonly used reverse engineering tools.
While Analyzing the malwares most of the time we don’t have its source code, so in order to understand their functionality one has to debug/disassemble the binary (executable, dll etc.), Understanding the assembly language will help you build a high level logic while your are debugging/disassembling the malware sample.
This session covered the basic concept of PE File format which is the native Windows executable file format, good understanding of it will help in reverse engineering and will help in understanding more advanced concepts of packers, loaders etc.
This session covered the concept of Windows Internals. The concept of Windows internals will allow one to understand the working of Windows operating system.
This session will guide you to prepare your lab for malware analysis.
This is an announcement for the upcoming Cysinfo cyber security community meetup on 28th May 2016 in Bangalore, India. This meet is completely free and doesn’t require any registration or any other formalities to attend. The meet will start at 9:30 AM IST. Here is Schedule of Security Talks: 09:30 – 10:10 Understanding Cryptolocker(ransomware) with a case […]
This is an announcement for the upcoming Cysinfo cyber security community meetup on 30th January 2016 in Bangalore, India. This meet is completely free and doesn’t require any registration or any other formalities to attend. The meet will start at 10 AM IST. Here is Schedule of Security Talks: 10:15 – 11:00 – Breaking into hospital […]
Friendly reminder for the upcoming Cysinfo cyber security community meet on 10th October 2015 in Bangalore, India. This meet is completely free and doesn’t require any registration or any other formalities to attend. The meet will start at 10 AM IST. Here is Schedule of Security Talks: 10:00-10:45 – Partial Homomorphic Encryption – Sreelakshmy and Mythily […]