|
You are here |
yasoob.me | ||
| | | | |
insinuator.net
|
|
| | | | | This is a write-up about how to use Frida to dump documents from a process after they have been loaded and decrypted. It's a generic and very effective approach demonstrated on a piece of software from North Korea. Some time ago we received an ISO file which was a dump of a CD-ROM from North Korea. The only information we got was that it included a document viewer and various PDF docume ... | |
| | | | |
www.corellium.com
|
|
| | | | | iOS applications are distributed as compiled binaries and are not readable by default. Click the blog to learn what goes into iOS reverse engineering. | |
| | | | |
calebfenton.github.io
|
|
| | | | | When analyzing malware or penetration testing an app which uses a native library, it's helpful to isolate and execute the library's functions. This opens the door for debugging and using the malware's | |
| | | | |
www.shogunlab.com
|
|
| | | Welcome to the second part in a tutorial series on reverse engineering Windows binaries with Ghidra! In this post, we'll be building on the concepts we learned in Part 0 and introduce some new topics | ||