Tips For Writing a .NET Static Config Extractor for Malware [ Reverse Engineering AMA ]

Sdílet
Vložit
  • čas přidán 7. 09. 2024
  • What are some tips for dealing with static config extraction of .NET malware?
    --
    Big thanks to all the reverse engineers who helped us put this together!
    Rattle (Jesko)
    / huettenhain
    github.com/bin...
    Jordan (psifertex)
    / psifertex
    binary.ninja/
    Karsten
    / struppigel
    / malwareanalysisforhedg...
    Drakonia
    / dr4k0nia
    dr4k0nia.githu...
    C3rb3ru5
    / c3rb3ru5d3d53c
    c3rb3ru5d3d53c...
    Josh
    / jershmagersh
    pwnage.io/
    Dodo
    / dodo_sec
    github.com/dod...
    Washi
    / washi_dev
    washi.dev/
    -----
    OALABS PATREON
    / oalabs
    OALABS DISCORD
    / discord
    Twitch
    / oalabslive
    OALABS GITHUB
    github.com/OALabs
    UNPACME - AUTOMATED MALWARE UNPACKING
    www.unpac.me/#/
    -----

Komentáře •

Další v pořadí
Automatické přehrávání
What The Security Industry Should Know About Reverse Engineering [ Reverse Engineering AMA ]12:11What The Security Industry Should Know About Reverse Engineering [ Reverse Engineering AMA ]
What The Security Industry Should Know About Reverse Engineering [ Reverse Engineering AMA ]OALabs
zhlédnutí 2,7K
Tips to Learn Reverse Engineering: Avoid These Common Pitfalls!9:11Tips to Learn Reverse Engineering: Avoid These Common Pitfalls!
Tips to Learn Reverse Engineering: Avoid These Common Pitfalls!OALabs
zhlédnutí 12K
I Reverse Engineered a Dangerous Virus and Found Something WEIRD (ESXiargs ransomware deep dive)12:42I Reverse Engineered a Dangerous Virus and Found Something WEIRD (ESXiargs ransomware deep dive)
I Reverse Engineered a Dangerous Virus and Found Something WEIRD (ESXiargs ransomware deep dive)Low Level Learning
zhlédnutí 842K
Finding out a genie's loopholes in advance00:53Finding out a genie's loopholes in advance
Finding out a genie's loopholes in advanceChris and Jack
zhlédnutí 14M
Hypnotizing trio workout! 👀🌀😆 | Triple Charm #Shorts00:22Hypnotizing trio workout! 👀🌀😆 | Triple Charm #Shorts
Hypnotizing trio workout! 👀🌀😆 | Triple Charm #ShortsTriple Charm
zhlédnutí 27M
鱿鱼游戏谁能坚持到最后呢!#火影忍者 #佐助 #家庭00:47鱿鱼游戏谁能坚持到最后呢!#火影忍者 #佐助 #家庭
鱿鱼游戏谁能坚持到最后呢!#火影忍者 #佐助 #家庭火影忍者一家
zhlédnutí 24M
Ne vždycky to jde napoprvé😅💕00:21Ne vždycky to jde napoprvé😅💕
Ne vždycky to jde napoprvé😅💕Lollipopz
zhlédnutí 175K
Understanding The PEB for Reverse Engineers16:09Understanding The PEB for Reverse Engineers
Understanding The PEB for Reverse EngineersOALabs
zhlédnutí 10K
DLL Injection with Ghidra / IDA Pro Tutorial #224:20DLL Injection with Ghidra / IDA Pro Tutorial #2
DLL Injection with Ghidra / IDA Pro Tutorial #2Juan Sacco
zhlédnutí 6K
Learn Reverse Engineering (for hacking games)7:26Learn Reverse Engineering (for hacking games)
Learn Reverse Engineering (for hacking games)cazz
zhlédnutí 1M
Process Memory Basics for Reverse Engineers - Tracking Memory With A Debugger [ Patreon Unlocked ]14:23Process Memory Basics for Reverse Engineers - Tracking Memory With A Debugger [ Patreon Unlocked ]
Process Memory Basics for Reverse Engineers - Tracking Memory With A Debugger [ Patreon Unlocked ]OALabs
zhlédnutí 15K
everything is open source if you can reverse engineer (try it RIGHT NOW!)13:56everything is open source if you can reverse engineer (try it RIGHT NOW!)
everything is open source if you can reverse engineer (try it RIGHT NOW!)Low Level Learning
zhlédnutí 1,4M
Well it finally happened... infected myself with Emotet lel9:40Well it finally happened... infected myself with Emotet lel
Well it finally happened... infected myself with Emotet lelOALabs
zhlédnutí 8K
Getting Started with dnSpyEx - Unraveling a .NET Formbook Dropper36:30Getting Started with dnSpyEx - Unraveling a .NET Formbook Dropper
Getting Started with dnSpyEx - Unraveling a .NET Formbook DropperDr Josh Stroschein - The Cyber Yeti
zhlédnutí 4,3K
I Reverse Engineered this Program and Generated Infinite CD Keys11:39I Reverse Engineered this Program and Generated Infinite CD Keys
I Reverse Engineered this Program and Generated Infinite CD KeysLow Level Learning
zhlédnutí 276K
Malware Analysis - .NET Unpacking23:58Malware Analysis - .NET Unpacking
Malware Analysis - .NET UnpackingMalwareAnalysisForHedgehogs
zhlédnutí 9K
Attack a Terezka jdou na rande… FOTBALOVÝ ZÁPAS00:26Attack a Terezka jdou na rande… FOTBALOVÝ ZÁPAS
Attack a Terezka jdou na rande… FOTBALOVÝ ZÁPASAttackShorts
zhlédnutí 347K
Ondřej Novotný - GELNÁROVÁ JE HODNÁ HOLKA, TRILOGII VYHRAJE KARLOS,PRODALI JSME 17.000 LÍSTKŮ ZA DEN1:30:59Ondřej Novotný - GELNÁROVÁ JE HODNÁ HOLKA, TRILOGII VYHRAJE KARLOS,PRODALI JSME 17.000 LÍSTKŮ ZA DEN
Ondřej Novotný - GELNÁROVÁ JE HODNÁ HOLKA, TRILOGII VYHRAJE KARLOS,PRODALI JSME 17.000 LÍSTKŮ ZA DENVláďa Kadlec - EXPERIENCE
zhlédnutí 271K
Wait for it… 😱 #shorts00:14Wait for it… 😱 #shorts
Wait for it… 😱 #shortsBugworkout
zhlédnutí 2,3M
We need to beat it… 😳⚽️00:10We need to beat it… 😳⚽️
We need to beat it… 😳⚽️Luke Nuttall
zhlédnutí 13M
KAŽDÝ MŮŽE RAPOVAT (bohužel)39:25KAŽDÝ MŮŽE RAPOVAT (bohužel)
KAŽDÝ MŮŽE RAPOVAT (bohužel)Tomáš Krch
zhlédnutí 151K
C’est qui le plus fort 😂00:18C’est qui le plus fort 😂
C’est qui le plus fort 😂Nicocapone
zhlédnutí 15M
NEJLEPŠÍ KVÍZ NA YOUTUBE @Duklock @EvilBender4723:24NEJLEPŠÍ KVÍZ NA YOUTUBE @Duklock @EvilBender47
NEJLEPŠÍ KVÍZ NA YOUTUBE @Duklock @EvilBender47Vidrail
zhlédnutí 230K
Will A Guitar Boat Hold My Weight?00:20Will A Guitar Boat Hold My Weight?
Will A Guitar Boat Hold My Weight?MrBeast
zhlédnutí 52M