Didier Stevens, Author at Forensic Blogs

September 21, 2021 by Didier Stevens

Update: re-search.py Version 0.0.18

This version has some Python3/Linux/MacOS fixes.

re-search_V0_0_18.zip (https)
MD5: 1BCA3B59B719FAFD6016D2F9F32F1A05
SHA256: 9E4807D3CE0EC320028AC760D3915F4FC0CBF6EC6E20FC9B2C91C54E74E6F548

September 19, 2021 by Didier Stevens

Overview of Content Published in August

Here is an overview of content I published in August: Blog posts: dnsresolver.py: Videos For Each Command Update: oledump.py Version 0.0.62 My YouTube Playlists Update: pdf-parser.py Version 0.7.5 Update: pdfid.py Version 0.2.8 Update: AnalyzePESig Version 0.0.0.8 YouTube videos: dnsresolver.py: 6 exfiltration Command dnsresolver.py: 7 track Command dnsresolver.py: 8 Options Videoblog posts: My YouTube Playlists SANS ISC Diary entries: procdump Version 10.1 Changing BAT Files On The Fly MALWARE Bazaar “Download daily malware batches” Simple Tips For Triage Of MALWARE Bazaar’s Daily Malware Batches Extra Tip For Triage Of MALWARE Bazaar’s Daily Malware Batches New Versions Of Sysinternals Tools .docx With Embedded EXE

August 21, 2021 by Didier Stevens

Update: AnalyzePESig Version 0.0.0.8

This new version of AnalyzePESig, my tool to analyze the digital signature of PE files, brings some major updates:

Support for UNICODE filenamesReintroduction of the capability to verify the signature of non-PE files, like .MSI files

And several bug fixes.

AnalyzePESig_V0_0_0_8.zip (https)
MD5: C14A2C8AA91D34F534B4F76E7014E3A9
SHA256: BCCF90BF6E4C26C33BF16DA20CF220DAE8D748B942224659DC720B35BB8EFE86