|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Subject: Tools to analyze "captured" binaries?
From: Anton Chuvakin (achuvaki
IC.SUNYSB.EDU)Date: Wed Apr 19 2000 - 15:18:38 CDT
- Next message: Richard Bejtlich: "Re: Weird Ping requests"
- Previous message: Keith McCammon: "Frontpage Exploits"
- Next in thread: Pavel Kankovsky: "Re: Tools to analyze "captured" binaries?"
- Reply: Pavel Kankovsky: "Re: Tools to analyze "captured" binaries?"
- Reply: Rob Lee: "Re: Tools to analyze "captured" binaries?"
- Reply: Living Prophet of the GREAT GRUG: "Re: Tools to analyze "captured" binaries?"
- Reply: karthik krishnamurthy: "Re: Tools to analyze "captured" binaries?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Hi there!
I just got a bunch of trojaned binaries (usual rootkit, I guess,
fingerd/ftp/login together with a sniffer) from my friend's box (hacked
via ADMROCKS, of course). What tools (apart from strings, ldd, file) I can
use to analyze those?
Thanks,
--
Anton A. Chuvakin
>> Where is a will there is a way. <<
http://www.chuvakin.org
licq: 29034084
- Next message: Richard Bejtlich: "Re: Weird Ping requests"
- Previous message: Keith McCammon: "Frontpage Exploits"
- Next in thread: Pavel Kankovsky: "Re: Tools to analyze "captured" binaries?"
- Reply: Pavel Kankovsky: "Re: Tools to analyze "captured" binaries?"
- Reply: Rob Lee: "Re: Tools to analyze "captured" binaries?"
- Reply: Living Prophet of the GREAT GRUG: "Re: Tools to analyze "captured" binaries?"
- Reply: karthik krishnamurthy: "Re: Tools to analyze "captured" binaries?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]