Security Incidents mailing list archives
Re: Tools to analyze "captured" binaries?
From: peak () ARGO TROJA MFF CUNI CZ (Pavel Kankovsky)
Date: Thu, 20 Apr 2000 12:32:21 +0200
On Wed, 19 Apr 2000, Anton Chuvakin wrote:
I just got a bunch of trojaned binaries (usual rootkit, I guess, fingerd/ftp/login together with a sniffer) from my friend's box (hacked via ADMROCKS, of course). What tools (apart from strings, ldd, file) I can use to analyze those?
objdump --disassemble --Pavel Kankovsky aka Peak [ Boycott Microsoft--http://www.vcnet.com/bms ] "Resistance is futile. Open your source code and prepare for assimilation."
Current thread:
- Tools to analyze "captured" binaries? Anton Chuvakin (Apr 19)
- (no subject) Peter Eriksson (Apr 20)
- (no subject) Del (Apr 20)
- Re: Tools to analyze "captured" binaries? Pavel Kankovsky (Apr 20)
- Re: Tools to analyze "captured" binaries? Rob Lee (Apr 20)
- <Possible follow-ups>
- Re: Tools to analyze "captured" binaries? Living Prophet of the GREAT GRUG (Apr 20)
- Re: Tools to analyze "captured" binaries? karthik krishnamurthy (Apr 20)
- Re: Tools to analyze "captured" binaries? Pavel Kankovsky (Apr 22)
- (no subject) Peter Eriksson (Apr 20)