REMnux: A Linux Distribution for Reverse-Engineering Malware
2011-12-29 22:09
429 查看
REMnux 是一个基于Linux的用于逆向工程、分析恶意代码的系统。
REMnux上面安装的软件有:
Analyze Flash malware: SWFTtools, flasm, flare, RABCDAsmand xxxswf.py
Interacting with IRC bots: IRC server (Inspire IRCd) and client (epic5)
Observe and interact with network activities: Wireshark,Honeyd, INetSim, fakedns, fakesmtp , NetCat,NetworkMiner, ngrep, pdnstool and tcpdump
Decode JavaScript: Firefox Firebug, QuickJava and JavaScript Deobfuscator extensions, Rhino debugger, JS-Beautify,SpiderMonkey, V8, Windows Script Decoder and Jsunpackn
Explore and interact with web malware: Firefox Tamper Data and User Agent Switcher extensions, TinyHTTPd, Burp Suite Free Edition, Stunnel, Tor , Jsunpackn and torsocks.
Analyze shellcode: gdb, objdump, Radare, shellcode2exe,libemu's sctest
Examine suspicious executables: upx, packerid, bytehist, DensityScout, xorsearch, xortool, TRiD, xortools.py,ClamAV, ssdeep, md5deep, pescanner and Pyew
Analyze malicious documents: Didier Steven's PDF tools, Origami framework, PDF X-RAY Lite, Peepdf, Jsunpackn, pdftk,pyOLEScanner.py and Hachoir
Decompile Java programs: Jad, JD-gui
Perform memory forensics: Volatility Framework with malware,timeliner and other modules, AESKeyFinder and RSAKeyFinder.
Handle miscellaneous tasks: unzip, unrar, strings, feh image viewer, SciTE text editor, OpenSSH server, findaes, Xpdf PDF viewer, VBinDiff file comparison/viewer, FreeMind.
参见:REMnux: A Linux Distribution for Reverse-Engineering Malware
REMnux上面安装的软件有:
Analyze Flash malware: SWFTtools, flasm, flare, RABCDAsmand xxxswf.py
Interacting with IRC bots: IRC server (Inspire IRCd) and client (epic5)
Observe and interact with network activities: Wireshark,Honeyd, INetSim, fakedns, fakesmtp , NetCat,NetworkMiner, ngrep, pdnstool and tcpdump
Decode JavaScript: Firefox Firebug, QuickJava and JavaScript Deobfuscator extensions, Rhino debugger, JS-Beautify,SpiderMonkey, V8, Windows Script Decoder and Jsunpackn
Explore and interact with web malware: Firefox Tamper Data and User Agent Switcher extensions, TinyHTTPd, Burp Suite Free Edition, Stunnel, Tor , Jsunpackn and torsocks.
Analyze shellcode: gdb, objdump, Radare, shellcode2exe,libemu's sctest
Examine suspicious executables: upx, packerid, bytehist, DensityScout, xorsearch, xortool, TRiD, xortools.py,ClamAV, ssdeep, md5deep, pescanner and Pyew
Analyze malicious documents: Didier Steven's PDF tools, Origami framework, PDF X-RAY Lite, Peepdf, Jsunpackn, pdftk,pyOLEScanner.py and Hachoir
Decompile Java programs: Jad, JD-gui
Perform memory forensics: Volatility Framework with malware,timeliner and other modules, AESKeyFinder and RSAKeyFinder.
Handle miscellaneous tasks: unzip, unrar, strings, feh image viewer, SciTE text editor, OpenSSH server, findaes, Xpdf PDF viewer, VBinDiff file comparison/viewer, FreeMind.
参见:REMnux: A Linux Distribution for Reverse-Engineering Malware
相关文章推荐
- WPS for Linux beta1 正式发布公测
- Linux: 20 Iptables Examples For New SysAdmins
- Linux for Ubuntu Clion配置OpenGL(C/C++)开发环境
- 标题: 包罗万有,Freeware Tools For Linux [转自sir]
- linux 下挂载ntfs分区报错configure failed for kernel[解决]
- linux mysql access denied for user root
- KGDB for ARM-Linux Usage Notes
- dnw for Linux error:Can not open /dev/secbulk0
- VMware tools for linux安装步骤
- Oracle rac 10g for linux vmware安装笔记
- Adobe AIR for Linux 终于跳出beta测试
- Build ACE for Linux
- rootkit for linux 18.tcp原理概述
- 在Redhat Linux AS 4.3中安装ACE的过程(Install ACE for RHAS Linux 4.3)
- DS18B20 Driver for Linux
- Pluggable Authentication Modules: The Definitive Guide to PAM for Linux SysAdmins and C Developers
- LSX Sand Washing Machine For Linux
- Wireless tools for Linux 的一些资料收集
- Redis for Linux安装手记