Malware analyst's cookbook and DVD : tools and techniques for fighting malicious code /
Tools and techniques for fighting malicious code
Michael Hale Ligh ... [et al.]
- Indianapolis, IN : Wiley Pub., c2011.
- xxvi, 716 p. : ill. ; 24 cm. + 1 DVD-ROM (4 3/4 in.)
Includes index. "This companion DVD contains: evidence files and source code; Windows and Linux tools and original programs in Python, C/C++, and Perl; annotated videos"--Disc label
Anonymizing your activities -- Honeypots -- Malware classification -- Sandboxes and multi-AV scanners -- Researching domains and IP addresses -- Documents, shellcode, and URLs -- Malware labs -- Automation -- Dynamic analysis -- Malware forensics -- Debugging malware -- De-obfuscation -- Working with DLLs -- Kernel debugging -- Memory forensics with volatility -- Memory forensics: code injection and extraction -- Memory forensics: rootkits -- Memory forensics: network and registry