首页
社区
课程
招聘
[ZT]SysAnalyzer
发表于: 2006-8-21 17:41 3834

[ZT]SysAnalyzer

2006-8-21 17:41
3834

SysAnalyzer is an automated malcode run time analysis application that monitors various aspects of system and process states.

SysAnalyzer was designed to enable analysts to quickly build a comprehensive report as to the actions a binary takes on a system.

SysAnalyzer can automatically monitor and compare:
Running Processes
Open Ports
Loaded Drivers
Injected Libraries
Key Registry Changes
APIs called by a target process
File Modifications
HTTP, IRC, and DNS traffic

SysAnalyzer also comes with a ProcessAnalyzer tool which can perform the following tasks:
Create a memory dump of target process
parse memory dump for strings
parse strings output for exe, reg, and url references
scan memory dump for known exploit signatures

Full GPL source for SysAnalyzer is included in the installation package.


Download:

http://labs.idefense.com/doDownload.php?downloadID=15

[注意]传递专业知识、拓宽行业人脉——看雪讲师团队等你加入!

收藏
免费 1
支持
分享
最新回复 (3)
雪    币: 1309
活跃值: (232)
能力值: ( LV2,RANK:10 )
在线值:
发帖
回帖
粉丝
2
东西还真不少, 支持版主
2006-8-21 20:35
0
雪    币: 200
活跃值: (10)
能力值: ( LV2,RANK:10 )
在线值:
发帖
回帖
粉丝
3
英语不是很好。。。
2006-8-21 21:24
0
雪    币: 200
活跃值: (10)
能力值: ( LV2,RANK:10 )
在线值:
发帖
回帖
粉丝
4
great program :)
2006-8-22 21:07
0
游客
登录 | 注册 方可回帖
返回
//