Anti-Analysis Techniques

Part of writing good malware is introducing ways to make it less detectable. Anti-Analysis techniques are ways to prevent security analysts from reverse engineering our software.

This section provides ways to make malware less detactable by security analysts & malware researchers. Companies with experienced researchers or large budgets will inevitably reverse engineer software that they want to. So generally our job is to make this process as time consuming as possible.

Tools of the trade

Sandboxes

Cuckoo Sandbox - Automated Malware Analysis

ANY.RUN - Interactive Online Malware Sandbox

CrowdStrike Falcon® Sandbox: Automated Malware Analysis Toolcrowdstrike.com

Reverse Engineering

The most popular reverse engineering tools for malware are listed below.

Ghidra
Ida
xdbg

PreviousNTDLL Unhooking - From Web Server NextAnti-Debugging Techniques

Last updated 8 months ago