Light

eastmountyxz / systemsecurity-reverseanalysis Goto Github PK

View Code? Open in Web Editor NEW

783.0 23.0 166.0 272.34 MB

该资源为系统安全和逆向分析实验，包括作者从零学习恶意代码分析、病毒逆向分析的工具及样本，基础性文章，希望对您有所帮助~

C++ 1.95% Python 72.15% Ruby 25.47% Batchfile 0.27% C 0.16%

systemsecurity-reverseanalysis's Introduction

SystemSecurity-ReverseAnalysis

该资源为系统安全和逆向分析实验，包括作者从零学习恶意代码分析、病毒逆向分析的工具及样本。主要以实例为主，安全工具推荐大家购买正版使用，基础性文章，希望对您有所帮助~

声明：本人坚决反对利用教学方法进行犯罪的行为，一切犯罪行为必将受到严惩，绿色网络需要我们共同维护，更推荐大家了解它们背后的原理，更好地进行防护。部分恶意样本不会分享给大家，分析工具会分享。

沙箱：

微步沙盒：https://s.threatbook.cn/
腾讯哈勃分析系统：https://habo.qq.com/
魔盾：https://www.maldun.com/analysis/
微点沙盒：https://sandbox.depthsec.com.cn/index.php/
奇安信文件深度分析平台：https://sandbox.ti.qianxin.com/sandbox/page
ANYRUN：https://app.any.run/
HybridAnalysis (Falcon Sandbox)：https://www.hybrid-analysis.com/
CAPE Sandbox: https://capesandbox.com/
BD Sandbox Analyzer：https://www.bitdefender.com/business/enterprise-products/sandbox-analyzer.html
Joe Sanbox: https://www.joesandbox.com/

博客原文：

PE文件解析、病毒分析、汇编普及

PE图标替换 PE最小格式

[网络安全自学篇] 《Windows黑客编程技术详解》笔记(1)VS环境配置及DLL延迟加载详解
[网络安全自学篇] 《Windows黑客编程技术详解》笔记(2)注入技术详解（全局钩子、远线程钩子、APC注入）
[网络安全自学篇] 《Windows黑客编程技术详解》笔记(3)病毒启动技术创建进程API、突破SESSION0隔离
[网络安全自学篇] 《Windows黑客编程技术详解》笔记(4)木马开机自启动技术（注册表、计划任务、系统服务）
[网络安全自学篇] 《Windows黑客编程技术详解》笔记(5)提权技术（令牌权限提升和Bypass UAC）
angr相关知识普及
汇编知识普及
[网络安全自学篇] 五十三.Windows漏洞利用之Metasploit实现栈溢出攻击及反弹shell
[网络安全自学篇] 五十四.Windows漏洞利用之基于SEH异常处理机制的栈溢出攻击及shell提取
[网络安全自学篇] 五十五.Windows漏洞利用之构建ROP链绕过DEP并获取Shell

AI安全系列十篇

蚂蚁金服一篇漏洞张超老师 AI网络流量监测 AI其他

By：Eastmount 2020-12-31

systemsecurity-reverseanalysis's People

Contributors

Stargazers

Watchers

Forkers

jimsonzhang kochiyasanaee popmedd ccasusensa kingking888 j5s binsec2me hecg119 wszme breakcount kevien fengjixuchui zzhsec crackercat yixingschool deeby xiaoqin00 ryuutanyou jimocode douglas88 scriptkiddlepyh ddzzj silentsoul04 binihao5bei wubozhi xin02 zhp1254 medasz freefv re-expoc evi1hack ahr1i9 97haicheng want2live233 talking-tomz inuyasha-fay ricalliu storagess conflict239 ruler9534 mytfx happyqingye shadowliangliang yqw1212 qinhwen rongwenzhao meiyingnima remote0 76ufo wbbxc danteslin m00nt0 kuristina rainser qiaopeng1993 aifanwang hjp1011 finalplus 958724723 gxlquan dosimz weartoby kay54068 icloudsong apareciym sec-u mad-coding rachelzql0123 zhugemomo wavestroke deviceobject tjuyanghw quuhua911 zha0 nevinhappy wweifu onceon koala-dk caokang kenuosec awsl-zm allblue147 wifior hitnias eujenz kar98kar ww380459000 voidexception sunxi1900 pklong007 yuyuowo woozz2 yqwlcc want1997 swiftzl 2537463005 wooyunsec w4n95 yunshitiger shuai19980

systemsecurity-reverseanalysis's Issues

熊猫烧香病毒里面没有样本 setup.bak 改成exe 好像不对

Recommend Projects

React

A declarative, efficient, and flexible JavaScript library for building user interfaces.
Vue.js

🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Typescript

TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
TensorFlow

An Open Source Machine Learning Framework for Everyone
Django

The Web framework for perfectionists with deadlines.
Laravel

A PHP framework for web artisans
D3

Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

javascript

JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
web

Some thing interesting about web. New door for the world.
server

A server is a program made to process requests and deliver data to clients.
Machine learning

Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Visualization

Some thing interesting about visualization, use data art
Game

Some thing interesting about game, make everyone happy.

Recommend Org

Facebook

We are working to build community through open source technology. NB: members must have two-factor auth.
Microsoft

Open source projects and samples from Microsoft.
Google

Google ❤️ Open Source for everyone.
Alibaba

Alibaba Open Source for everyone
D3

Data-Driven Documents codes.
Tencent

China tencent open source team.