SUNBURST SolarWinds Malware Analysis - Tools, Tactics and Malware Reverse Engineering скачать в хорошем качестве

SUNBURST SolarWinds Malware Analysis - Tools, Tactics and Malware Reverse Engineering

SUNBURST SolarWinds Malware Analysis - Tools, Tactics and Malware Reverse Engineering Here we take a look inside so of the most complex, elegant, well-crafted malware I've seen, known as SUNBURST and responsible for the global SolarWinds compromise. This code is a malicious DLL, loaded by the parent platform and blends in exceptionally well to the whole code-ecosystem. This Video starts with a little Podcast on the SolarWinds Compromise and then we discuss the Attack Chain and We start by using DNSpy to decompile the .NET code, giving us access to the source code and perform complete Reverse Engineering and full code analysis We cover FNV-1 hashing (something I'd never heard of!) and also variances of the Base64 encoding routine which the bad guys are using the mask their malicious code. Special thanks to FireEye, their research on this malware is exceptional. To watch the Episode checkout this link :    • SUNBURST SolarWinds Hunting - Malware Inte...   #sunburst #solarwinds #malwareanalysis LINKS ===== https://www.fireeye.com/blog/threat-r... https://github.com/fireeye/sunburst_c... https://www.volexity.com/blog/2020/12... https://us-cert.cisa.gov/ncas/alerts/... github.com/ITAYC0HEN/SUNBURST-Cracked/blob/main/OrionImprovementBusinessLayer_modified.cs https://mp.weixin.qq.com/s/UqXC1vovKU... https://www.mcafee.com/blogs/other-bl... TOOLS ====== dnSpy - https://github.com/dnSpy/dnSpy De4Dot - https://github.com/de4dot/de4dot THANKS ======= If you LIKED this video, please hit the THUMBS UP and please SUBSCRIBE! Many thanks for watching Cheers