nganhkhoa/mether049-malware
1
0
Fork 0
mirror of https://github.com/nganhkhoa/malware.git synced 2024-06-10 21:32:07 +07:00
Code Issues Projects Releases Wiki Activity

Update malware-analysis_ref_and_memo.md

Browse Source
This commit is contained in:
mether049 2020-07-15 22:38:50 +09:00 committed by GitHub
parent 92ab81172d
commit 309a09663f
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 3 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
malware-analysis_ref_and_memo.md
View File

@ -268,7 +268,9 @@ DFIR,マルウェア解析OSINTに特化したUbuntuベースのディスト
- [010 Editorに組み込むことも可能](https://www.sweetscape.com/010editor/repository/scripts/file_info.php?file=RateStrings.1sc&type=1&sort=)
- ref:
- [Learning to Rank Strings Output for Speedier Malware Analysis](https://www.fireeye.com/blog/threat-research/2019/05/learning-to-rank-strings-output-for-speedier-malware-analysis.html)
- **exiftool**
- **exiftool**
- **[Detect It Easy](https://github.com/horsicq/Detect-It-Easy)**
- library, linker, packer, compilerなどを判別
- **wql**
- wqlで子プロセスの検索
```