kezhen的专栏

什么是scdbgscdbg是一款多平台开源的Shellcode模拟运行、分析工具。其基于libemulibrary搭建的虚拟环境，通过模拟32位处理器、内 存和基本Windows API运行环境来虚拟执行Shellcode以分析其行为。有了虚拟执行妈妈再也不用担心我的电脑中病毒了。基本原理众所周知，shellcode为了实现特定的功能必须通过调用系统API来完成－不论先前怎怎么变形怎么

Where were we?As the title states, this is the second part of Analyzing PDF Malware. If you haven’t read the first part you can find it here. Go ahead and read it now if you haven’t already, we’ll

When we last left our heroes…This is the third part of the Analyzing PDF Malware series. If you haven’t read the first and second parts you can find them here and here respectively. We will be bui

Down that dusty trail…As the big blue letters above state, this is part 3B of the Analyzing PDF Malware series. If you haven’t read any of the preceding posts you can find them here: Part1, Part2,

http://blog.spiderlabs.com/2012/07/analyzing-pdf-malware-part-3d.htmlThis is part 3D, the final point in the Analyzing PDF Malware constellation. If you haven’t read any of the preceding pos

Let me explain, no there is too much, let me sum up…This is part 3C in the ongoing saga of the Analyzing PDF Malware series. If you haven’t read any of the preceding posts you can find them all righ

Truman 下载：http://www.secureworks.com/cyber-threat-intelligence/tools/truman/

转自：http://cleanbytes.net/malware-online-scanners

BackgroundI’d like to think that security awareness has gotten to the point where the average end user thinks twice before opening an ‘exe’ file sent to them as an email attachment. I like to think