This article will cover what Volatility is, how to install Volatility, and most importantly how to use Volatility.

An overview of the malware analysis tool Ghidra. This article covers how to install and navigate the Ghidra interface.

This piece covers the various types of malware that are available and their characteristics.

An overview of the free malware analysis tool PeStudio.

When responding to a cybersecurity incident I’ve always found memory forensics to be a great skill to have. By capturing the memory of a compromised device you can quickly perform…

This article is an overview of the tool Process Hacker. This is a popular tool amongst security professionals when analyzing malware as it will display real-time activity of processes and provide a wealth of technical information on how a particular process is behaving.

A Cuckoo Sandbox is an open-source tool that can be used to automatically analyze malware. Imagine, it’s 2 am in the Security Operations Center (SOC) and an alert has triggered…

This is the fourth and final article in a series of blog posts that serve as an x64dbg tutorial. In this article, we will be taking all the knowledge we…

YARA rules are used to classify and identify malware samples by creating descriptions of malware families based on textual or binary patterns.

An overview of stack memory, it’s architecture, and how it can be used to reverse-engineer malware using x64dbg.

This article acts as a tutorial on how to use Sysinternals Autoruns to detect potentially unwanted software that is installed and running automatically on your device.

This article is an x64dbg tutorial in which reverse engineering malware methodology will be explained and demonstrated.