- Monappa K.A., "Learning Malware Analysis: Explore the concepts, tools, and techniques to analyze and investigate Windows malware" amazon.
- Sikorski M., Honig A., "Practical Malware Analysis: The Hands-On Guide to Dissecting Malicious Software" amazon.
- Ferrie P., "The "Ultimate" Anti-Debugging Reference" [free](https://anti-reversing.com/Downloads/Anti-Reversing/The_Ultimate_Anti-Reversing_Reference.pdf
Mert Gör 🇹🇷 hwpplayer1
🇹🇷
hwpplayer1
/ resources.md
Created
July 31, 2024 23:11
— forked from av-gantimurov/resources.md
List of resources for malware analysts
hwpplayer1
/ All-Mal-Dev.md
Created
July 31, 2024 23:11
— forked from maxzxc0110/All-Mal-Dev.md
Malware Dev Reading List
- https://www.vx-underground.org/archive.html
- https://www.vx-underground.org/windows.html
- https://doxygen.reactos.org/index.html
- https://modexp.wordpress.com/
- https://klezvirus.github.io/
- https://zerosum0x0.blogspot.com/
- https://www.binarly.io/posts/index.html
- https://0xdarkvortex.dev/blogs/
- https://cocomelonc.github.io/
hwpplayer1
/ temp.sh
Created
June 23, 2024 12:45
— forked from ZiTAL/temp.sh
gnu/linux bash: temp of cpu/gpu/hdd
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| CPU_NAME=`awk -F: '/model name/ { gsub(/^ */, "", $2); print $2 }' /proc/cpuinfo | head -1` | |
| CPU_01=`sensors | grep -E "Tctl:\s+\+[0-9]+\.[0-9]+" | awk '{print $2}' | grep -oP '[0-9]+\.[0-9]+'` | |
| CPU_02=`sensors | grep -E "Tccd1:\s+\+[0-9]+\.[0-9]+" | awk '{print $2}' | grep -oP '[0-9]+\.[0-9]+'` | |
| GPU_NAME=`/usr/bin/nvidia-smi | grep -E 'NVIDIA\s' | awk '{print $3, $4, $5, $6}'` | |
| GPU_01=`/usr/bin/nvidia-smi | grep -E '[0-9]+C' | awk '{print $3}' | grep -oP '[0-9]+'` | |
| HDD01_01=`sensors | head -n 10 | tail -n 1 | grep -oP '\+[0-9]+\.[0-9]+' | head -n 1 | grep -oP '[0-9]+\.[0-9]+'` | |
| HDD01_02=`sensors | head -n 11 | tail -n 1 | grep -oP '\+[0-9]+\.[0-9]+' | head -n 1 | grep -oP '[0-9]+\.[0-9]+'` |
hwpplayer1
/ compiling_asm.md
Created
January 10, 2024 18:40
— forked from yellowbyte/compiling_asm.md
how to assemble assembly with NASM assembler to 32-bit or 64-bit ELF binary with or without libc
hwpplayer1
/ Compile, decompile and sign APK using apktool utility.
Created
December 3, 2023 18:28
— forked from ryanamaral/Compile, decompile and sign APK using apktool utility.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 1. Download latest apktool version. | |
| 2. Download the batch file and aapt.exe. | |
| 3. Create a folder anywhere in the PC and put all the apktool.jar, aapt.exe and the batch script in that folder. | |
| 4. Open command prompt. | |
| 5. Navigate to the folder where you placed apktool.jar, batch script and the aapt.exe. | |
| 6. Now, you need to install the file using the " IF " command. | |
| 7. Type the following command. | |
| apktool if name-of-the-app.apk |
hwpplayer1
/ .gitignore
Created
December 3, 2023 11:03
— forked from Yousha/.gitignore
.gitignore for PHP developers.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ##### Windows | |
| # Windows thumbnail cache files | |
| Thumbs.db | |
| Thumbs.db:encryptable | |
| ehthumbs.db | |
| ehthumbs_vista.db | |
| # Dump file | |
| *.stackdump |
hwpplayer1
/ libera music community.md
Created
October 1, 2023 08:14
— forked from xybre/libera music community.md
Libera.chat's Music Community
There has always been a massive overlap between those who listen to, make, or play music and the free open source community.
Some use technology by necessity to compose, record, and distribute music. Others use technology itself as the instrument from hardware synthesizers to software DAWs.
No matter if you're curious about guitar tabs or want to gush about the latest softsynth, there is a place for you on IRC.
Serving the Libera community since 2021!
hwpplayer1
/ perl-shell.md
Created
July 15, 2023 18:05
— forked from asimjalis/perl-shell.md
How to run Perl in an interactive shell
by Asim Jalis, MetaProse.com
An interactive shell is useful for quickly trying out different commands. While Ruby, Python, and Clojure come with interactive shells, Perl does not. However, it is easy to create one using this one-liner on Unix systems:
perl -e 'do{print("perl> ");$_x=<>;chomp $_x;print(eval($_x)."\n")}while($_x ne "q")'
hwpplayer1
/ Compile, decompile and sign APK using apktool utility.
Created
June 6, 2021 00:56
— forked from AwsafAlam/Compile, decompile and sign APK using apktool utility.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 1. Download latest apktool version. | |
| 2. Download the batch file and aapt.exe. | |
| 3. Create a folder anywhere in the PC and put all the apktool.jar, aapt.exe and the batch script in that folder. | |
| 4. Open command prompt. | |
| 5. Navigate to the folder where you placed apktool.jar, batch script and the aapt.exe. | |
| 6. Now, you need to install the file using the " IF " command. | |
| 7. Type the following command. | |
| apktool if name-of-the-app.apk |
hwpplayer1
/ ARMonQEMUforDebianUbuntu.md
Created
May 31, 2021 19:02
— forked from luk6xff/ARMonQEMUforDebianUbuntu.md
Emulating ARM with QEMU on Debian/Ubuntu
You might want to read this to get an introduction to armel vs armhf.
If the below is too much, you can try Ubuntu-ARMv7-Qemu but note it contains non-free blobs.
First, cross-compile user programs with GCC-ARM toolchain. Then install qemu-arm-static so that you can run ARM executables directly on linux
If there's no qemu-arm-static in the package list, install qemu-user-static instead
NewerOlder