Sign in to follow this  
Followers 0
Kjoz

Malware

4 posts in this topic

I wanna learn how malware works, download it, decompile it etc.. Same goes to with viruses etc..

I always wanted to know how they worked exactly, what files they took over. Where do they connect you, why connect there etc... pretty much forensic work.

How do the "Professionals" do it ? etc..

Any Links, advice, books, recourses, would be appreciated.

Thanks in advance

0

Share this post


Link to post
Share on other sites

You should read few of the following books

Computer Viruses for Dummies

A Short Course on Computer Viruses

Virus Proof

Malware : Fighting Malicious Codes

Counter Hack

The Art of Computer Virus Research and Defence

and u can visit the following links

http://www.virusbtn.com

http://www.vmyths.com

U can also search wikipedia for these kind of articles.

0

Share this post


Link to post
Share on other sites

Get a virtualization suite that supports snapshots. Install windows XP unpatched and winpooch. Infect yourself on the guest OS ans run birdged networking to the host Os with ethereal/wireshark. Winpooch will catch the system hooks and the packet sniffer will show you what it's doing. This is of course if you don't want to or are unable to do binary analysis.

I think there was a BRR on malware

0

Share this post


Link to post
Share on other sites

I don't know about "decompiling" but, if you wanna get down to real nitty gritty (i hate that expression) I suggest using a Disassembler such as IDA Pro or a kernel debugger such as SoftICE. Lots of tutorials for both, just look around the net.

0

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now
Sign in to follow this  
Followers 0