#ro0ted #OpNewblood What the blackhats dont want you to know: REMnux a distro for analyzing malware
This is an introduction to the distro called REMnux: A Linux Toolkit for Reverse-Engineering and Analyzing Malware. – https://twitter.com/ro0ted/
What can you do with REMnux?
Examine browser malware
Analyze malicious document files
Extract and decode suspicious artifacts
Handle laboratory network interactions
Review multiple malware samples
Examine properties and contents of suspicious files
Investigate Linux and Windows malware
Perform memory forensics
As state on their homepage:
Visit website: https://remnux.org/
You want this on a virtual machine not a main OS.
Download Virtual box and install it:
The file downloaded for this tutorial is a .ova file.
You can find it here:
After download is done just double click the ova file:
Now click import:
Then it will load:
Then click settings to enable internet:
Now this window will open:
Now click System & Check Network:
Now click network to choose your settings then press ok:
Now click start:
Then you will see this screen:
Open terminal to update:
Enter Y and press enter.
Type: sudo apt-get upgrade
Type: sudo apt-get update
Click REM Report Template:
You will see this template for your analysis results:
Then go back to desktop and click the document REM Tools:
Then you will see a layout of the distro:
Next tutorial we will use it this is just an Introduction to REM. A must for every Reverse Engineer. As we will finally dive into analyzing malware.
REMnux: Linux Toolkit for Reverse-Engineering and Analyzing Malware +
(Visited 875 times, 1 visits today)
- You can follow any responses to this entry through the RSS 2.0 feed.
- Both comments and pings are currently closed.