Search:

Type: Posts; User: "vinnu"

Page 1 of 12 1 2 3 4

Search: Search took 0.13 seconds.

  1. Hello Seema13

    Namaste

    You just entered this field, but you already know many tools and their names than most of us here. Hope someone who did OWASP previously can answer you properly.
    Regards
    ..."vinnu"
  2. Thread: Reverser Here

    by "vinnu"
    Replies
    1
    Views
    6,848

    Hello A

    Namaste
    You are most welcome here "A" . We all here learn by sharing and discussing the stuff actively. Hope you'll also discus the stuff.
    ..."vinnu"
  3. Thread: Hi all.

    by "vinnu"
    Replies
    1
    Views
    3,465

    Hello

    Namaste
    Welcome to G4H. We all have learnt by discussing the stuff with each other and we hope that you'll also be doing so. This way we flourish ourself and make way for new comers of this field....
  4. Thread: SecurityFlaw

    by "vinnu"
    Replies
    2
    Views
    2,616

    Debugging for RE

    Namaste
    Make debugger a friend if you wnat to proceed in RE field. There are many, you can check any like ollydbg, immunity, xdbg, gdb, vc6++, windbg,... etc.
    ..."vinnu"
  5. Thread: greetz

    by "vinnu"
    Replies
    3
    Views
    4,852

    Hello Sam

    Hello Sam
    You are most welcome here. We all learn by sharing and discussing stuff here. Hope you'll do same and flourish yourself and other's as well along with yourself.
    ..."vinnu"
  6. Replies
    1
    Views
    3,958

    Debugger Documentation

    Hello Prateek
    Debugger's documentation is the best resource always. you can try it in Help menu or sometime you can find it within installation folder, or from website of debugger itself.
    ..."vinnu"
  7. Hello pitbrat9 Welcome to g4h brotherhood. We...

    Hello pitbrat9
    Welcome to g4h brotherhood. We expect you to discus openly, you can also ask anything, but don't refrain to search before asking as forum could already have your answers somewhere in...
  8. As far as I remember, the time period to keep...

    As far as I remember, the time period to keep logs preserved should be 3 years by DOT rules.
  9. Thread: Hey!!

    by "vinnu"
    Replies
    1
    Views
    2,917

    Hello Your request is like asking Well to come...

    Hello
    Your request is like asking Well to come and lift water for you and give it to you to drink.

    ..."vinnu"
  10. Namaste, First of all, we must settle on teh...

    Namaste,
    First of all, we must settle on teh definition of "Non-Technical Background". If you think that coming form some non professional academic qualification makes you non-technical then you...
  11. Replies
    1
    Views
    2,295

    Welcome primer00t, hope to hear more discussions...

    Welcome primer00t, hope to hear more discussions from you in coming days about infosec.
    ..."vinnu"
  12. Replies
    7
    Views
    26,038

    convert string to integer without using struct module

    A simple trick to save the script form loading "struct" module and converting string or binary data to number is as :

    num = int(data[:4][::-1].encode("hex"),16)

    and vice-versa would be :
    ...
  13. The DLL load order also determines the...

    The DLL load order also determines the baseaddress of the loaded module. I mean if there are mor ethan one module with same ImageBAse address, then the module loaded first will be mapped to that...
  14. Replies
    0
    Views
    5,032

    Malware Emulation - An Introduction

    Namaste

    This post discuses the things from the point where reversing of any malware ends.
    The analysis of a malware is not enough to satisfy any researcher. There is no point
    in analysing a...
  15. Replies
    8
    Views
    11,495

    If you don't have papers to tell ur story, then...

    If you don't have papers to tell ur story, then let ur work speak loudly for u.

    ..."vinnu"
  16. Mediator/Intermediate Class

    Namaste

    This is done using the concept of "Mediator" or better known as "Intermediate Class".

    The mediator/intermediate class has the knowledge of all the internally accessible objects+methods...
  17. Replies
    2
    Views
    6,791

    Namaste Any module you try to load from outside...

    Namaste
    Any module you try to load from outside world; most of av engines and emet are going to catch it.

    ..."vinnu"
  18. Replies
    14
    Views
    12,825

    rule Dirtjumper { meta: author = "vinnu"...

    rule Dirtjumper {
    meta:
    author = "vinnu"
    description = "binary Signature of Dirtjumper aka Win32/Dishigy"
    strings:
    $magic = "MZ"
    $v0 = { 00 00 CE 7B 00 00 E2 7B 00 00 F2 7B 00 00 FE...
  19. Replies
    14
    Views
    12,825

    rule Dirtjumper { meta: author = "vinnu"...

    rule Dirtjumper {
    meta:
    author = "vinnu"
    description = "binary Signature of Dirtjumper aka Win32/Dishigy"
    strings:
    $magic = "MZ"
    $v0 = { 00 00 CE 7B 00 00 E2 7B 00 00 F2 7B 00 00 FE...
  20. Replies
    14
    Views
    12,825

    rule Urausy_E { meta: author = "vinnu"...

    rule Urausy_E {
    meta:
    author = "vinnu"
    description = "Win32/Urausy ransomware binary signature"
    strings:
    $magic = "MZ"
    $v0 = "BMAPIAddress"
    $v1 = "BMAPIDetails"
    $v2 =...
  21. they dont get root by themselves. But while you...

    they dont get root by themselves. But while you install, these apps asks for permissions and as one finds no otherway to install them otherwise, and as soon as you proceed with installation by giving...
  22. Replies
    14
    Views
    12,825

    Generic MSIL signature : rule Kazy { meta...

    Generic MSIL signature :


    rule Kazy {
    meta :
    author = "vinnu"
    strings :
    $magic = "MZ"
    $v0 = "BSJB"
    $v2 = "#Strings"
  23. Replies
    14
    Views
    12,825

    rule Simda { meta: author = "vinnu"...

    rule Simda {
    meta:
    author = "vinnu"
    description = "Simda binary signature"
    strings :
    $magic = "MZ"
    $v0 = "Misza Cia Less"
    $v1 = "inness"
    $v2 = "Lau. A"
    $v3 = "0B0J0P0V0"
  24. Replies
    14
    Views
    12,825

    rule Nitol { meta: author = "vinnu"...

    rule Nitol {
    meta:
    author = "vinnu"
    description = "Win32/Nitol DDOS malware binary signature"
    strings:
    $magic = "MZ"
    $v0 = ".htmGET "
    $v1 = "__p__commode"
    $v2 = "ProcessTrans"...
  25. Replies
    14
    Views
    12,825

    rule Rodecap_StealRAT { meta: author =...

    rule Rodecap_StealRAT {
    meta:
    author = "vinnu"
    description = "StealRAT Binary"
    strings:
    $magic = "MZ"
    $v1 = "SetCurrentDirectory failed (%d)"
    $v2 = "RANDOM_STRING"
    $v3 = "*.txt"...
Results 1 to 25 of 280
Page 1 of 12 1 2 3 4