The FireEye FLARE team’s newest contribution to the malware analysis community, FLOSS, is an open-source tool to automatically detect, extract, and decode obfuscated strings in Windows Portable Executable files. FLOSS helps fight against malware authors who commonly obfuscate strings in their programs to deter static and dynamic analysis, and can extract strings that are deobfuscated by decoding routines, while recovering stackstrings and obtaining all static strings.Read more...
Entries filed under 'open source tools'
Threat Research Blog
The FireEye Labs team posts blog entries under threat research to present and discuss cyber attacks and threat intelligence from a technical perspective. They cover the full spectrum of exploits and vulnerabilities, including advanced malware and targeted threats.
Automatically Extracting Obfuscated Strings from Malware using the FireEye Labs Obfuscated String Solver (FLOSS)June 23, 2016 9:00 AM By Moritz Raabe, William Ballenthin | Threat Research, Advanced Malware
January 27, 2016 8:00 AM By Jing Xie, Jimmy Su, Zhaofeng Chen | Mobile Threats, Threat Research
What are the security risks of iOS apps? While some alternative solutions make it more efficient for developers ito update their apps, they don't meet the strict security standards Apple has in place, which could lead to compromised code.Read more...
May 22, 2012 6:53 PM By Sean Cunningham