文件名称:Reverse Engineering Malware
文件大小:351KB
文件格式:PDF
更新时间:2013-09-28 07:55:29
reverse engineering
This document discusses tools and techniques useful for understanding inner workings of malware such as viruses, worms, and *s. We describe an approach to setting up inexpensive and flexible laboratory environment using virtual workstation software such as VMware, and demonstrate the process of reverse engineering a * using a range of system monitoring tools in conjunction with a disassembler and a debugger. Portions of this document are based on the paper that we submitted to GIAC as part of a practical assignment for obtaining a GCIH Certification.