However,
extreme caution should be exercised when using these patches as no vendor
support can be expected should such a patch have any harmful side effects.
References
www.grayhathackingbook.com
diff www.gnu.org/software/diffutils/diffutils.html
patch www.gnu.org/software/patch/patch.html
ELF Specification http://x86.ddj.com/ftp/manuals/tools/elf.pdf
Xdelta http://sourceforge.net/projects/xdelta/
PECOFF Specification www.microsoft.com/whdc/system/platform/firmware/PECOFF.mspx
WMF Hotfix http://hexblog.com/2005/12
ZERT http://zert.isotf.org/
Month of Apple Bugs http://projects.info-pull.com/moab/
Month of Apple Fixes http://landonf.bikemonkey.org/code/macosx/
Gray Hat Hacking: The Ethical Hacker??™s Handbook
496
Malware Analysis
?– Chapter 20 Collecting Malware and Initial Analysis
?– Chapter 21 Hacking Malware
497
This page intentionally left blank
CHAPTER20 Collecting Malware and
Initial Analysis
??? Malware
??? Types of malware
??? Malware defensive techniques
??? Latest trends in honeynet technology
??? Honeypots
??? Honeynets
??? Types of honeypots and honeynets
??? Thwarting VMware detection
??? Catching malware
??? VMware host and guest setup
??? Using Nepenthes to catch a fly
??? Initial analysis of malware
??? Static and live analysis
??? Norman Sandbox technology
Now that you have some basics skills in exploiting and reverse engineering, it is time to
put them together and learn about malware.
Pages:
848
849
850
851
852
853
854
855
856
857
858
859
860
861
862
863
864
865
866
867
868
869
870
871
872