Discussion on:
REMnux: Reverse-engineering malware

5
Comments
Add Your Opinion

Join the conversation!

Follow via:
RSS
Email Alert
Community Preferences
1 Vote
+ -
Contributr
Don't know if a pdf is laced with malware
Michael Kassner 19th Dec 2011
New Post:

Use REMnux to check it out. I am not a coder, so parts of REMnux will be foreign to me. But, I have already caught a bad pdf document using REMnux. It was destined for the CEO.
1 Vote
+ -
Another great article!
JCitizen 23rd Dec 2011
I would need this tool if I ever graduate to be a serious contender in the security field. Most people that know me already think I'm serious. I am like a junk yard dog, but that doesn't mean I know half of it.

It would be cool to know what part of the malware code helped tip you off to the malicious PDF? Was it the analysis tools, mentioned in your article? Thanks for all the hard work Michael! happy
1 Vote
+ -
Contributr
Thanks, J
Michael Kassner Updated - 24th Dec 2011
I was suspicious, as I wasn't expecting anything. It came as I was researching this article -- what propitious timing. I used REMnux and Google to search for what I thought was an odd chunk of verbiage and sure enough.

I am by no means qualified at this stuff. If I could, I would love to take Lenny's class. Imagine the power and peace of mind having that ability gives.
1 Vote
+ -
The perfect holiday gift!
seanferd 23rd Dec 2011
Very cool. I do not believe that I have looked at this in quite a while - I'm not exactly a reverse-engineering guy. But I do like to poke and prod at malware occasionally, especially when it has annoyed someone I love. Thanks for another fine article!

I had a little snicker at this, though:

...icons for a few GUI tools installed on REMnux the analyst will likely use frequently: xterm (terminal shell)...

grin
The terminal emulator is the CLI. wink

Happy Christmas!
1 Vote
+ -
Contributr
Thanks, Sean
Michael Kassner 24th Dec 2011
I agree with your opinion.

As for xterm statement, I will have to query Lenny. He is very precise about all things. Thanks for pointing it out.
Keyboard Shortcuts:
Prev
Next
Toggle
Join the conversation
Formatting +
BB Codes - Note: HTML is not supported in forums
  • [b] Bold [/b]
  • [i] Italic [/i]
  • [u] Underline [/u]
  • [s] Strikethrough [/s]
  • [q] "Quote" [/q]
  • [ol][*] 1. Ordered List [/ol]
  • [ul][*] · Unordered List [/ul]
  • [pre] Preformat [/pre]
  • [quote] "Blockquote" [/quote]

Join the TechRepublic Community and join the conversation! Signing-up is free and quick, Do it now, we want to hear your opinion.

Join Login

Keep Up with TechRepublic

Discover more newsletters

Follow us however you choose!

Media Gallery

View All

Hot Discussions

Start a Discussion
View All

Hot Questions

Ask a Question