http://www.networkforensics.com Tue, 21 Jun 2011 22:54:21 +0000 en hourly 1 http://wordpress.org/?v=3.1

http://www.networkforensics.com/2011/06/13/using-windbg-to-begin-reverse-engineering-unknown-malware-from-memory/ http://www.networkforensics.com/2011/06/13/using-windbg-to-begin-reverse-engineering-unknown-malware-from-memory/#comments Mon, 13 Jun 2011 03:03:46 +0000 Gary Golomb http://www.networkforensics.com/?p=788 http://www.networkforensics.com/2011/06/13/using-windbg-to-begin-reverse-engineering-unknown-malware-from-memory/feed/ 4 http://www.networkforensics.com/2011/06/11/mutex-analysis-the-canary-in-the-coal-mine-and-discovering-new-families-of-malware/ http://www.networkforensics.com/2011/06/11/mutex-analysis-the-canary-in-the-coal-mine-and-discovering-new-families-of-malware/#comments Sat, 11 Jun 2011 10:34:40 +0000 Gary Golomb http://www.networkforensics.com/?p=755 http://www.networkforensics.com/2011/06/11/mutex-analysis-the-canary-in-the-coal-mine-and-discovering-new-families-of-malware/feed/ 2 http://www.networkforensics.com/2011/04/13/dissecting-the-cve-2011-0611-flash-player-zero-day/ http://www.networkforensics.com/2011/04/13/dissecting-the-cve-2011-0611-flash-player-zero-day/#comments Wed, 13 Apr 2011 14:28:21 +0000 alex http://www.networkforensics.com/?p=738 http://www.networkforensics.com/2011/04/13/dissecting-the-cve-2011-0611-flash-player-zero-day/feed/ 0 http://www.networkforensics.com/2011/01/12/network-forensics-and-reverse-engineering-part-2-%e2%80%93-a-deeper-dive-into-real-javascript-analysis-and-reverse-engineering/ http://www.networkforensics.com/2011/01/12/network-forensics-and-reverse-engineering-part-2-%e2%80%93-a-deeper-dive-into-real-javascript-analysis-and-reverse-engineering/#comments Wed, 12 Jan 2011 03:36:14 +0000 Gary Golomb http://www.networkforensics.com/?p=699 http://www.networkforensics.com/2011/01/12/network-forensics-and-reverse-engineering-part-2-%e2%80%93-a-deeper-dive-into-real-javascript-analysis-and-reverse-engineering/feed/ 1 http://www.networkforensics.com/2011/01/03/cyber-crime-or-cyber-espionage/ http://www.networkforensics.com/2011/01/03/cyber-crime-or-cyber-espionage/#comments Mon, 03 Jan 2011 17:54:03 +0000 alex http://www.networkforensics.com/?p=606 http://www.networkforensics.com/2011/01/03/cyber-crime-or-cyber-espionage/feed/ 5 http://www.networkforensics.com/2010/12/13/vm-detection-by-in-the-wild-malware/ http://www.networkforensics.com/2010/12/13/vm-detection-by-in-the-wild-malware/#comments Mon, 13 Dec 2010 09:03:15 +0000 Gary Golomb http://www.networkforensics.com/?p=592 http://www.networkforensics.com/2010/12/13/vm-detection-by-in-the-wild-malware/feed/ 1 http://www.networkforensics.com/2010/11/25/identifying-the-country-of-origin-for-a-malware-pe-executable/ http://www.networkforensics.com/2010/11/25/identifying-the-country-of-origin-for-a-malware-pe-executable/#comments Thu, 25 Nov 2010 06:36:04 +0000 Gary Golomb http://www.networkforensics.com/?p=563 http://www.networkforensics.com/2010/11/25/identifying-the-country-of-origin-for-a-malware-pe-executable/feed/ 0 http://www.networkforensics.com/2010/11/04/bredolab-takedown-%e2%80%93-just-the-tip-of-the-iceberg/ http://www.networkforensics.com/2010/11/04/bredolab-takedown-%e2%80%93-just-the-tip-of-the-iceberg/#comments Thu, 04 Nov 2010 12:06:59 +0000 alex http://www.networkforensics.com/?p=487 http://www.networkforensics.com/2010/11/04/bredolab-takedown-%e2%80%93-just-the-tip-of-the-iceberg/feed/ 1 http://www.networkforensics.com/2010/10/26/sometimes-the-answer-really-is-that-simple/ http://www.networkforensics.com/2010/10/26/sometimes-the-answer-really-is-that-simple/#comments Tue, 26 Oct 2010 18:38:39 +0000 tim http://www.networkforensics.com/?p=442 http://www.networkforensics.com/2010/10/26/sometimes-the-answer-really-is-that-simple/feed/ 0 http://www.networkforensics.com/2010/07/09/ponemon-study/ http://www.networkforensics.com/2010/07/09/ponemon-study/#comments Fri, 09 Jul 2010 21:52:10 +0000 Eddie Schwartz http://www.networkforensics.com/?p=341 http://www.networkforensics.com/2010/07/09/ponemon-study/feed/ 0