evild3ad.com
Creating Volatility Linux Profiles (openSUSE)
http://www.evild3ad.com/3610/creating-volatility-linux-profiles-opensuse
Creating Volatility Linux Profiles (openSUSE). Creating Volatility Linux Profiles (openSUSE). March 2, 2014. 1) Install OS in your VM (e.g. openSUSE-13.1-DVD-x86 64.iso). 2) Fingerprint OS and kernel. 3) Install Subversion in your VM and download Volatility. Sudo zypper install subversion $ sudo svn checkout http:/ volatility.googlecode.com/svn/trunk/ volatility. Sudo zypper install libdwarf-tools. 5) Creating the kernel data structures file using libdwarf-tools. C) Making the profile. How to install Vol...
evild3ad.com
PC säubern
http://www.evild3ad.com/malware-forensics
In vielen Fällen ist es nicht ausreichend lediglich die schädliche Programmdatei zu löschen bzw. umzubenennen oder einen Autostart-Eintrag in der Registry zu entfernen. Weitere Systemänderungen können nicht ausgeschlossen werden (z.B. ein Mechanismus zum Nachladen, so dass die Schadsoftware zu einem späteren Zeitpunkt wieder aktiv wird) sowie dass sich weitere Schadsoftware auf dem Rechner befindet und unerkannt bleibt. Joe Sandbox APK Analyzer. Joe Sandbox Document Analyzer. Joe Sandbox File Analyzer.
evild3ad.com
Analysis of Android.Zitmo-Urlzone
http://www.evild3ad.com/3008/analysis-of-android-zitmo-urlzone
Analysis of Android.Zitmo-Urlzone. Analysis of Android.Zitmo-Urlzone. October 8, 2013. Intro: What is Android.Zitmo-Urlzone? Android.Zitmo-Urlzone is the mobile “add-on” for the banking trojan Urlzone. This app, known as a Zeus In The Mobile variant, steals incoming SMS messages and uploads them to the remote server. Its primary purpose is to defeat online banking’s two factor authentication by intercepting confirmation SMS sent by the banks to their customers (mTAN). SmartSecurity ver 1 2.apk. Allows an...
evild3ad.com
Memory Forensics
http://www.evild3ad.com/category/memory-forensics
Creating Volatility Linux Profiles (openSUSE). March 2, 2014. 1) Install OS in your VM (e.g. openSUSE-13.1-DVD-x86 64.iso) 2.) Fingerprint OS and kernel 3.) Install Subversion in your VM and download Volatility 4.) Installing libdwarf-tools 5.) Creating the kernel data structures file using libdwarf-tools a) Install the following packages via…. Read More →. Creating Volatility Linux Profiles (Debian/Ubuntu). March 2, 2014. Read More →. How to install Volatility on Mac OS X (Version 10.8.4). August 6, 2013.
evild3ad.com
Analysis of Android.Trojan.FakeSite.A aka Perkele
http://www.evild3ad.com/3301/analysis-of-android-trojan-fakesite-a-aka-perkele
Analysis of Android.Trojan.FakeSite.A aka Perkele. Analysis of Android.Trojan.FakeSite.A aka Perkele. November 30, 2013. Intro: What is Perkele? Perkele is a crimeware kit used to generate Android trojans for monitoring and forwarding SMS messages containing mTANs. Perkele, made a name for itself because it can be combined with any malicious code that executes webinject attacks in the browser. It is thus a flexible cross-platform trojan that is relatively easy to create. 8221; in meaning and “fuck! So le...
evild3ad.com
PC untersuchen
http://www.evild3ad.com/it-security
Ist mein PC infiziert? Kaspersky Rescue Disk (Notfall-CD). Microsoft Standalone System Sweeper Tool (Beta). Avira AntiVir Rescue System. Joe Sandbox APK Analyzer. Joe Sandbox Document Analyzer. Joe Sandbox File Analyzer. Joe Sandbox URL Analyzer. VxStream Sandbox (Payload Security). Amimepy from PhishMe Research. Loffice.py by tehsyntx. Oledump by Didier Stevens. Psparser.py from PhishMe Research. Rtfdump by Didier Stevens. Structured Storage Viewer (SSView). PDF Tools by Didier Stevens. This Week In 4n6.
evild3ad.com
Page 2
http://www.evild3ad.com/page/2
Analysis of Android.Zitmo-Urlzone. October 8, 2013. Intro: What is Android.Zitmo-Urlzone? Android.Zitmo-Urlzone is the mobile "add-on" for the banking trojan Urlzone. This app, known as a Zeus In The Mobile variant, steals incoming SMS messages and uploads them to the remote server. Its primary purpose is to…. Read More →. How to install Volatility on Mac OS X (Version 10.8.4). August 6, 2013. Read More →. BKA-Trojaner: Ihr Internet Service Provider ist blockiert. May 3, 2013. Der BKA-Trojaner ist zurück!
evild3ad.com
Android
http://www.evild3ad.com/category/mobile-security/android
Analysis of Android.Trojan.FakeSite.A aka Perkele. November 30, 2013. Intro: What is Perkele? Perkele is a crimeware kit used to generate Android trojans for monitoring and forwarding SMS messages containing mTANs. Perkele, made a name for itself because it can be combined with any malicious code that executes webinject…. Read More →. Analysis of Android.Zitmo-Urlzone. October 8, 2013. Intro: What is Android.Zitmo-Urlzone? Read More →. Joe Sandbox APK Analyzer. Joe Sandbox Document Analyzer.
evild3ad.com
GnuPG Key
http://www.evild3ad.com/gnupg-key
8212;–BEGIN PGP PUBLIC KEY BLOCK—–. Version: GnuPG v2.0.17 (MingW32). 8212;–END PGP PUBLIC KEY BLOCK—–. Joe Sandbox APK Analyzer. Joe Sandbox Document Analyzer. Joe Sandbox File Analyzer. Joe Sandbox URL Analyzer. VxStream Sandbox (Payload Security). Amimepy from PhishMe Research. Loffice.py by tehsyntx. Oledump by Didier Stevens. Psparser.py from PhishMe Research. Rtfdump by Didier Stevens. Structured Storage Viewer (SSView). PDF Tools by Didier Stevens. NETRESEC Network Security Blog. This Week In 4n6.
evild3ad.com
Linux
http://www.evild3ad.com/category/linux
Creating Volatility Linux Profiles (openSUSE). March 2, 2014. 1) Install OS in your VM (e.g. openSUSE-13.1-DVD-x86 64.iso) 2.) Fingerprint OS and kernel 3.) Install Subversion in your VM and download Volatility 4.) Installing libdwarf-tools 5.) Creating the kernel data structures file using libdwarf-tools a) Install the following packages via…. Read More →. Creating Volatility Linux Profiles (Debian/Ubuntu). March 2, 2014. Read More →. Joe Sandbox APK Analyzer. Joe Sandbox Document Analyzer.