all InfoSec news
Ghidra reverse engineering malware filled with empty space.
Nov. 14, 2023, 12:19 a.m. | /u/mattbann
Malware Analysis & Reports www.reddit.com
In a section called .ndata 60% of the program is interpreted like this:
0047b002 ?? ??
Which I'm assuming is either some unknown data type or the creators attempt of giving the executable enough size so that someone doesn't suspect the file size …
called engineering ghidra malware memory piece program reverse reverse engineering single space
More from www.reddit.com / Malware Analysis & Reports
[Video] Triaging Files on VirusTotal
1 week, 5 days ago |
www.reddit.com
Need recommendations for Premium Tools
1 week, 5 days ago |
www.reddit.com
A Powerful tracing engine based on Qemu
2 weeks, 5 days ago |
www.reddit.com
Dynamic Malware Analysis of Konni RAT Malware APT37 With Any.Run
3 weeks, 5 days ago |
www.reddit.com
Jobs in InfoSec / Cybersecurity
Social Engineer For Reverse Engineering Exploit Study
@ Independent study | Remote
DevSecOps Engineer
@ LinQuest | Beavercreek, Ohio, United States
Senior Developer, Vulnerability Collections (Contractor)
@ SecurityScorecard | Remote (Turkey or Latin America)
Cyber Security Intern 03416 NWSOL
@ North Wind Group | RICHLAND, WA
Senior Cybersecurity Process Engineer
@ Peraton | Fort Meade, MD, United States
Sr. Manager, Cybersecurity and Info Security
@ AESC | Smyrna, TN 37167, Smyrna, TN, US | Santa Clara, CA 95054, Santa Clara, CA, US | Florence, SC 29501, Florence, SC, US | Bowling Green, KY 42101, Bowling Green, KY, US