Video

Just had to analyze this sample in SANS FOR610 training. Very nice sample.

Hi, i'd like to see the rest of the videos, but patreon decline my payment. Is there another way? Or platform to see all video course? Thank you

Amazing content! Please do more videos Reverse engineering context! thank you.

is there an update to this?

how would you go about finding the ioctl code if it wasn't pre-disclosed? i'm new to reversing

Excellent for beginners like me.

2:49 could you link that tool? I couldn't find it anywhere. Perhaps I'm using the wrong search terms.

Parabéns pelo conteúdo...

Couldn't you have inserted a jump instead of the push 0?

I love you for uploading this. Great video!

G-UINT

You know what I said to self? "That's nasty. Maybe I'll try that." I don't have a particular use for it and don't ever look at pseudocode for anything, ever. But still I dig it. Rock on, dude.

so anyway to bypass breakpoint check ?

Dc ?

The Stompin' Tom outro really caught me off guard xD Unfortunately I seem to be at this kind of video a bit too early, don't know nearly enough about assembly to make heads or tails of what i'm looking at. I just wanted to figure out why this (not malicious) program I have wasn't properly launching xD

I did not see actual diffing like side by side pseudocode comparison in IDA is it possible with BinDiff?

hi, i love malware develpment & reverse engineering in windows, how can i start this two fields? please help me

sending mental fist bumps

not to be a dick but those edits ruins the video a lot and its so annoying

Hello! Thank you for this! Has anyone here run into the issue that after restart to Safe Boot, when logging on it says an app is need and one simply cannot log on?

I worked with an "experienced" coder who worked on Windows 95 and they've been calling it WindBag for years... because it's name is windbg - windbag. Pretty simple really.

Video very good 🎁🎁🎁😍😍 Like friends ❤❤❤❤❤⚘️⚘️🫰

hi, can you create a complete tutorial how to create a bortnet with IRC

I have a question, do you know why would a developer use this method? Is there any performance loss or anyother limitation because using the injection is lot more complex than just using the themida in the exe.

Bro thanks learn lot of tricks in your channel.

I’ve been struggling with a Delphi file for the last week wish I’d found this sooner 😀

Hi can I run Remnux on Flare VM for Windows on ARM?

wow, a german!

Nice to see mystery Sean, the hairy end of OALabs xD

pretty insane, thank you for this

a wild sean has appeared

احلي اصلع فالكوكب

Can someone here invite me to Malpedia?

Thank you for your great work 👍 👏 😀 🙌 🙏 and for sharing ♥️ ❤️ ✨️ 😀

awesome video

Woooa, very CLEAR !!! thank you so much !!!!!!!!!!!1

Thanks for the video. I have one question. My EntryPoint in x64dbg is 1001149B and PEbear lists 10E20 as my Function RVA for Export 'DllInstall'. How exactly would I add those numbers to set a BP after the call?

Video very good🎁🎁🎁🎁⚘️🌷 Happy birthday ❤❤❤🥰🥰🥰🥰❤️

I understand that it's a good practice to use WIN7 for RE, but these days some malware is targeting specifically WIN10 and nothing else. Have you found a reliable way to disable ASLR on Windows 10?

you can recommended any book about emulation I am writing my article for my graduate program in computer science and I want to discuss emulation techniques and case study with analysis of how the JVM works, thanks

very cool explanation. Nice talk about the API hammering. I also love the doggo[.]exe :)

How do I debug Comodo Internet Security Pro? it reaches this breakpoint and no longer debugs.

The new WinDbg allows you to do kernel mode debugging from the host :)

Thank you

idk when I press F5 it says sorry you don't have any decompilers on windows

Asking this more than a year after this video's release .... is this the best and most optimal way to build a Windows Malware Analysis environment on ARM Macs ?

Very cool. I'm writing an 8 bit multi-CPU symbolic simulator with static analysis and code tracing/debug capabilities, it's cool to see how the main OS's implement the debug/single step functions. Thanks for the explanation.

You spend a great edeal of time explaining what you are not going to be explaining instead of explaining all thye things you ARE going to be explaining.

May I ask if you have tried to compile unicorn from source? I tried to compile unicorn static libraries for arm64 architecture and failed.

Thank! awesome video