How-To Incident Response Malware Tools
Filtering with Process Monitor
For anyone performing dynamic (live) analysis of malware, an essential tool to have at hand is Windows Sysinternal’s Process Monitor. So why…
Category: Malware
Analysis Forensics How-To Malware
Android Malware Forensics
Corrie’s capstone project for her Master’s degree on Android malware and analysis. Click below for the full paper. Android Malware…
Incident Response Malware News
Mandiant’s APT1 Report – Real or Fake?
Anyone in the malware/forensic/security industry has probably heard about the report released by Mandiant titled APT1: Exposing One of China’s…
How-To Incident Response Malware Tools
Malicious PDF Triage
Today was the first time I was able to analyze malicious PDFs. I previously knew nothing about how to treat…