Posts Tagged ‘didier stevens’

Extracting Digital Signatures from Signed Malware, (Sat, May 11th)

May

2013

Sometimes attackers digitally sign their malicious software. Examining properties of the signature helps malware analysts understand the context of the incident. Moreover, analysts could use the signature as an indicator of compromise. Here are some tips and tools for determining whether a suspicious Windows executable has been signed and for extracting the embedded signature in […]

Category Security Written by SANS Internet Storm Center, InfoCON: green 0 Comments

x64 Windows Shellcode

Feb

2012

Last year I found great x64 shellcode for Windows on McDermott’s site. Not only is it dynamic (lookup API addresses), but it even handles forwarded functions.But it’s written for MASM, and I prefer to use NASM. Hence I translated it, but also normalized it to adhere to the x64 calling convention and fixed a bug […]

Category Security Written by Didier Stevens 0 Comments

Archives

Archives

About Us

Our mission is to help users and also IT security passionate to reach relevant information related to cyber security.

This publication contains a lot of information and guidance on how to better protect your IT systems, data and activities from malicious factors, and also on how to safely navigate the Internet.

We look forward to hearing from you about cyber safety. Please let us know if there’s something specific you’re interested in learning about.

Contact Us

Name *
Your name is required

E-mail *
Email address entered is invalid

Please enter a message

Incorrect security code

The Latest in IT Security

Posts Tagged ‘didier stevens’

Extracting Digital Signatures from Signed Malware, (Sat, May 11th)

x64 Windows Shellcode

Categories

Featured

Archives

Latest Comments

About Us

Contact Us