Kernel debugging with IDA
 Hex-Rays (hexrays) <info hex-rays com> |
Friday, January 30 2009 13:02.18 CST |
When IDA introduced debugging facilities years ago, the task of analyzing hostile code became more enriched: no more looking at static code and figuring out what it does, instead just run the malware in a virtual machine and debug it remotely, even debug just a small code snippet from the database (Bochs based debugger plugin).
Comments
| Posted: Wednesday, December 31 1969 18:00.00 CST | |