By Jeffrey Gennari on August 28, 2017 9:00 AM| No Comments
In a previous post, I discussed the Pharos Binary Analysis Framework and tools to support reverse engineering of binaries with a focus on malicious code analysis. Recall that Pharos is a CERT-created framework that builds upon the ROSE compiler infrastructure...
By Jeffrey Gennari on April 11, 2016 10:00 AM| No Comments
Much of the malware that we analyze includes some type of remote access capability. Malware analysts broadly refer to this type of malware as a remote access tool (RAT). RAT-like capabilities are possessed by many well-known malware families, such as...
By Jeffrey Gennari on August 18, 2015 9:00 AM| No Comments
Object-oriented programs present considerable challenges to reverse engineers. For example, C++ classes are high-level structures that lead to complex arrangements of assembly instructions when compiled. These complexities are exacerbated for malware analysts because malware rarely has source code available; thus,...
Toll Free: 888-201-4479
4500 Fifth Avenue
Pittsburgh, PA 15213-2612