REMnux: A Linux Distribution for Reverse-Engineering Malware

Discutii despre orice are legatura cu acest O.S.
Linux O.S.

REMnux: A Linux Distribution for Reverse-Engineering Malware

Post Number:#1  Postby rukov » 24 Oct 2014 12:16

REMnux incorporates a number of tools for analyzing malicious executables that run on Microsoft Windows, as well as browser-based malware, such as Flash programs and obfuscated JavaScript. This popular toolkit includes programs for analyzing malicious documents, such PDF files, and utilities for reverse-engineering malware through memory forensics.

REMnux can also be used for emulating network services within an isolated lab environment when performing behavioral malware analysis. As part of this process, the analyst typically infects another laboratory system with the malware sample and redirects the connections to the REMnux system listening on the appropriate ports.

You can learn the malware analysis techniques that make use of the tools installed and pre-configured on REMnux by taking the Reverse-Engineering Malware at SANS Institute.

REMnux focuses on the most practical freely-available malware analysis tools that run on Linux. If you are looking for a more full-featured distribution that incorporates a broader range of digital forensic analysis utilities, take a look at SANS Investigative Forensic Toolkit (SIFT) Workstation.

Code: Select all
User avatar
Progress to next rank:
Status: Offline
Posts: 74
Joined: 23 Jan 2014 12:43

Invitations sent: 0
Referrals: 1
Local time: 23 Sep 2017 12:16
Has thanked: 25 times
Been thanked: 71 times

Return to Linux

Who is online

Users browsing this forum: No registered users and 1 guest