Hi all please help me to virus reverse engineering and find virus source code Through
reverse engineering
0
8 replies to this topic
#2
evlncrn8
-
- (Full Member)
-
- 278 posts
repoleved dip dna reverser
- Gender:Male
-
Posted 18 August 2011 - 06:26 PM
Alarm bells ringing... Give one good reason please...
#3
linuscomex
-
- (Junior)
-
- 3 posts
Newbie
- Gender:Male
-
Posted 18 August 2011 - 07:06 PM
Only for learn !
and make anti virus
and make anti virus
#4
evlncrn8
-
- (Full Member)
-
- 278 posts
repoleved dip dna reverser
- Gender:Male
-
Posted 18 August 2011 - 10:05 PM
Its not usuallty that simple, first you usually have to be able to reverse engineer very well then you move onto viruses and malware.. This is typical and done to stop script / virus kiddies getting new viruses and malware
#5
linuscomex
-
- (Junior)
-
- 3 posts
Newbie
- Gender:Male
-
Posted 18 August 2011 - 11:12 PM
do you can put tutorial from virus reverse engineering here for all?
#6
evlncrn8
-
- (Full Member)
-
- 278 posts
repoleved dip dna reverser
- Gender:Male
-
Posted 19 August 2011 - 12:00 AM
Nope i cant, have you actually even done reverse engineering before?, cos writing an anti virus (your plan..right?) is not that easy..drivers are involved etc and requires a fair amount of technical knowledge and expertise..
#7
KpochMx
-
- (Junior+)
-
- 6 posts
Newbie
Posted 02 September 2011 - 08:31 PM
Virus are like other programs with malicious intructions so download a Virus (not hard),
*Load it on Ollydbg Vmware XP machine (Just to be safe and use DeepFreeze )
*Donwnload RegMon and FileMon to see what is written to your computer at opening .exe
*Check that file registry and file change on olly dbg most of virus modified registry to autostart and change explorer.exe
Writte your advances and move on more complicated Virus like Fake Antivirus
*Load it on Ollydbg Vmware XP machine (Just to be safe and use DeepFreeze )
*Donwnload RegMon and FileMon to see what is written to your computer at opening .exe
*Check that file registry and file change on olly dbg most of virus modified registry to autostart and change explorer.exe
Writte your advances and move on more complicated Virus like Fake Antivirus
#8
Jaymz
-
- (Full Member)
-
- 562 posts
Postmaster
- Gender:Male
- Location:England
-
Posted 03 September 2011 - 01:38 PM
linuscomex, on 18 August 2011 - 03:12 PM, said:
Hi all please help me to virus reverse engineering and find virus source code Through
reverse engineering
reverse engineering
Not sure if I should do this,but .....
http://www.opensc.ws/trojan-malware-samples/ http://zeltser.com/combating-malicious-software/malware-sample-sources.html http://www.offensivecomputing.net/
..should get you started..
edit: oh,btw.. you have to register on offensivecomputing site, and you have to state reasons why should they grant
you an access to their huge DB..
If they accept it,you will be validated and given access..
..but if that's your answer,forget about it.
Edited by Jaymz, 03 September 2011 - 03:11 PM.
#9
chickenbutt
-
- (Full Member)
-
- 153 posts
Mega Poster
- Gender:Male
-
Posted 23 October 2011 - 06:57 AM
trash olly and go with IDA..static analyses and hex dump cross-references is the only reliable way anyways. You'll also need it for RISC binaries.
Also tagged with Question
Reverse Code Engineering →
Programming and Coding →
[Question] Statically linking TitanEngine?Started by Mr. eXoDia, 22 Oct 2011  titanengine, static, linking and 1 more...
|
|
![[Question] Statically linking TitanEngine? - last post by mudlord](http://forum.tuts4you.com/uploads/profile/photo-30861.png?_r=0)
|
1 user(s) are reading this topic
0 members, 1 guests, 0 anonymous users
