Finding Registry Malware Persistence with RECmd
Chad Tilbury has writen a post on how to use Eric Zimmerman’s RECmd and its batch files to uncover malware persistence…
Learning Android Forensics, 2nd Edition has been released
The 2nd edition of Learning Android Forensics by Oleg Skulkin, Donnie Tindal and Rohit Tamma has been released. Here is the …
Dissecting Cozy Bear’s malicious LNK file
Weaponized LNK files are not very popular way of distributing malware, but, of course, sometimes they take place. One of a g…
Analyzing PowerShell Malware
In this talk Chris Davis discuss how to properly reverse engineer many types of PowerShell malware from analyzing dropper do…
MalDozer: Automatic Framework for Android Malware Chasing Using Deep Learning
ElMouatez Billah Karbab discusses his work at DFRWS EU 2018: …
Malcom: Malware Communication Analyzer
Malcom is a tool designed to analyze a system’s network communication using graphical representations of network traff…
Refined VirusShare Hash Sets
MantaRay Forensics team converted VirusShare.com 0-337 hash sets to RAW, EnCase and Autopsy format. The new set contains 31,…
Juicy PDFs
This new video is the next episode of “Introduction to Malware Analysis” series. This time Richard Davis shows h…
Amcache_Scan Autopsy Plugin
This Autopsy plugin by Rebecca Anderson won Autopsy Plugin Contest this year at Open Source Digital Forensics Conference (OS…
How to Deploy Cuckoo Sandbox
Marc Rivero López presented a how-to guide that will help you to deploy Cuckoo Sandbox – an open source malware sandbo…
