From c20676472f24d6adf02533e75bf060c7487c5869 Mon Sep 17 00:00:00 2001 From: mether049 Date: Fri, 27 Mar 2020 23:13:13 +0900 Subject: [PATCH] Update malware-analysis_ref_and_memo.md --- malware-analysis_ref_and_memo.md | 3 +++ 1 file changed, 3 insertions(+) diff --git a/malware-analysis_ref_and_memo.md b/malware-analysis_ref_and_memo.md index 8b764d2..e54c065 100644 --- a/malware-analysis_ref_and_memo.md +++ b/malware-analysis_ref_and_memo.md @@ -296,6 +296,9 @@ Injecition/Hollowingされたプロセスの自動検出
- **[Bisonal Analysis Utils](https://www.nttsecurity.com/docs/librariesprovider3/resources/Japan/bisonal-utils)** - Bisonalに含まれる文字列のデコード,通信の復号,yaraルール +# PDF Analysis +- **[pdfid.py](https://blog.didierstevens.com/programs/pdf-tools/)** +- **[pdf-parser.py](https://blog.didierstevens.com/programs/pdf-tools/)** # Docment file Analysis - Filetype