.Hi All,
By googling I have collected many links about Rootkit analysis. Though they are very comprehensive and detailed, I want to know is there any articles or posts that talk about static analysis of rootkits from a very basic level. For example, how to start the analysis when only a sys file is available and exe is not available and how to perform step-by-step dynamic analysis of rootkits.
![[+] expand](/imagery/files/soysauce_blueprint.gif){kind=link}