mirror of
https://github.com/nganhkhoa/malware.git
synced 2024-06-10 21:32:07 +07:00
1.3 KiB
1.3 KiB
Tools
Online Sandbox
| name | site | remarks |
|---|---|---|
| AMAaaS | https://amaaas.com/ | apk only |
| ANYRUN | https://app.any.run/#register | |
| Intezer Analyze | https://analyze.intezer.com/#/ | |
| IRIS-H | https://iris-h.services/pages/dashboard | maldoc only |
| CAPE Sandbox | https://cape.contextis.com/ | |
| Joe Sandbox Cloud | https://www.joesandbox.com/ | |
| cuckoo | https://cuckoo.cert.ee/ | |
| cuckoo | https://sandbox.pikker.ee/ | |
| Hybrid Analysis | https://www.hybrid-analysis.com/?lang=ja | |
| ViCheck | https://www.vicheck.ca/submitfile.php | |
| Triage | https://tria.ge/ | |
| Yomi Sandbox | https://yomi.yoroi.company/upload | |
| UnpacMe | https://www.unpac.me/#/ | online unpacker,beta |
Unpacker
- 攻撃者グループTA505が利用するマルウェア(GetandGoDll, Silence, TinyMet, Azorult, KBMiner, etc.)の静的アンパッカー
TAFOF-Unpacker
Doc Analysis
- VBA マクロの解析についての資料
Advanced VBA Macros Attack&Defence,BHEU2019
Binary Analysis
Symbolic Execurtion
to do...
Taint Analysis
to do...
Decompiler
ref:
- Intel系アーキテクチャSoftware Developer向けのマニュアル
Intel® 64 and IA-32 Architectures Software Developer Manuals