Infected PDF: Extract the payload – Infected PDFs have always been a popular way to infect computers, learn how it malicious PDF files are built.
Catch malware with your own Honeypot – Learn how to deploy a honeypot in 10 minutes with this step by step guide about Cuckoo sandbox. Easy sandboxing.
RunPE: How to hide code behind a legit process – RunPE is a trick used by some malware to hide code into a legit process. Learn how to detect.
This is a general explanation about different kind of online threats. What they do, and how. Introduction to viruses, malware, worms, adware and others.
PUPs (for potentially unwanted programs) are harmless by design, most of the time. Here we will study a case where such program behaves like a rootkit.
Internet Explorer extensions (BHO) are a very stealth way to inject code in a web browser. Learn how it works to better prevent further infections.
Got infected with a Bootkit (boot rootkit)? Follow this step by step guide to get rid of it. Our guide also includes a short analysis of the malware.
Got infected with Gootkit malware? Follow this step by step guide to get rid of it. Our guide also includes a short analysis of the malware.
Got infected with Zeus (Zbot) Banker? Follow this step by step guide to get rid of it. Our guide also includes a short analysis of the malware.
Userland Rootkits explained. This is the first part of this rootkit writing tutorial in which we will detail the basics about userland rootkits.