Subscription

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Learning Hub

Conferences

Free Learning

You're reading from Mastering Reverse Engineering Re-engineer your ethical hacking skills

Product type Paperback

Published in Oct 2018

Publisher Packt

ISBN-13 9781788838849

Length 436 pages

Edition 1st Edition

Tools

Linux

Concepts

Ethical Hacking

Author (1):

Reginald Wong

View More author details

Table of Contents (15) Chapters

Preface

1. Preparing to Reverse

2. Identification and Extraction of Hidden Components FREE CHAPTER

3. The Low-Level Language

4. Static and Dynamic Reversing

5. Tools of the Trade

6. RE in Linux Platforms

7. RE for Windows Platforms

8. Sandboxing - Virtualization as a Component for RE

9. Binary Obfuscation Techniques

10. Packing and Encryption

11. Anti-analysis Tricks

12. Practical Reverse Engineering of a Windows Executable

13. Reversing Various File Types

14. Other Books You May Enjoy

Leave a review - let other readers know what you think

Tools

Identifying the registry entry, files dropped, and running processes that are related to the malware requires tools. There are existing tools that we can use to extract these objects. There are two analysis events we should consider: analysis after the malware has been executed and analysis before the malware executes. Since our aim for this chapter is to extract components, we will discuss the tools that can help us find suspected files. Analysis tools that are used after we have extracted our suspected malware will be discussed in further chapters.

When a system has already been compromised, the analyst would need to use tools that can identify suspected files. Each suspected file will be analysed further. To start off, we can identify it based on persistence.

List down all processes and their respective file information
From the list of known registry persistence paths...

You have been reading a chapter from

Mastering Reverse Engineering

Published in: Oct 2018

Publisher: Packt

ISBN-13: 9781788838849

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at $19.99/month. Cancel anytime

Authors (1)

Wong

Dr. Timothy Wong is a 30 years IT veteran. He holds a PhD in networking from University of Manchester Institute of Science and Technology, UK. He has deep experience in wireless and wireline networking, digital a/v, software development, sales and consulting. He frequently works with telcos, banks, governments and enterprises. He is also a professor on Big Data, Wireless and IoT at Humber College, Toronto, Canada. As an entrepreneur, he co-founded a number of companies in the past 20 years. He infuses business and technical knowledge to pursue successes.

See other products by Wong