Analyzing tools

Discussion in 'Malware Analysis Archive' started by Valentin N, Feb 25, 2011.

  1. jim lin

    jim lin Level 8

    Aug 6, 2012

    monitor for registry changes RegShot is a small utility that allows you to quickly take a snapshot
    of your registry and then compare it with a later one - done after doing system changes or installing
    a new software product. The changes report can be produced in text or HTML format and contains a list
    of all modifications that have taken place between Snapshot1 and Snapshot2. In addition to registry changes,
    RegShot can also scan a folder on your hard drive and check for file changes.


    donetao and Gnosis like this.
  2. adyblueboy

    adyblueboy Level 2

    Feb 15, 2014
    Windows 10
  3. looda

    looda New Member

    Mar 11, 2014
    thx so much
  4. Oxygen

    Oxygen Level 42

    Feb 23, 2014
    United States
    Windows 10
    Thanks for this post!
  5. Neno

    Neno Level 5

    Jan 4, 2012
    Windows 10
  6. donetao

    donetao New Member

    Sep 7, 2014
    A rootkit is a stealthy type of software, typically malicious, designed to hide the existence of certain processes or programs from normal methods of detection and enable continued privileged access to a computer.
  7. frogboy

    frogboy Level 61

    Jun 9, 2013
    Heavy Duty Mechanic.
    Western Australia
    Windows 10
  8. NekoJonez

    NekoJonez New Member

    Jun 3, 2015
    IT-support - Planner at Flemish Exam Jury
    Maybe already said: Fiddlr, for sure. Also Depency Walker.
  9. GinGin

    GinGin New Member

    Jul 9, 2015
    thanx! Well done!
  10. Quassar

    Quassar Level 7

    Feb 10, 2012
    Poland, Bielsko - Biała
    #51 Quassar, Dec 4, 2015
    Last edited: Dec 4, 2015
    DiskPulse Free/Payment - Analize folders/files changes in real time
    SysTracer "payment" Files/Registry change snapshot analize
    MultiMon "payment" Analize File Registry and other such things in real time
    VMware Wokrstation + ThinApp = Virtualization + modify Repository, but you can use it to analize malware changes sometinhg like Sandboxie with BSA Antivirus Scanning in a VMware View Virtual Desktop Environment That Includes ThinApp Virtualized Applications - VMware ThinApp Blog

    Phrozen Windows File Monitor - "free" monitor changes in real time
    NtRegEdit - Native Registry Editor - Free and probably most advanced register editor which i could use :)

    ArtMoney - i know its software to hacking games like CE but this tool have extended HEX editor and complex lua injector when i have to bypass wirus and such others tools like SpyWare Proces detector.. VIP Edition can change name of process program to any wish you, help hide proces for other programs/viruses.

    other tool i prefer is IDA and Hiew but for sure you know it :p
Similar Threads Forum Date
Pentagon Calls For Help Analyzing Satellite Images Technology News Mar 9, 2018
Malware Analysis Need help on analyzing this suspicious .doc file Malware Analysis May 29, 2017
Need help analyzing possible ransomware Malware Analysis May 29, 2017
  • About Us

    Our community has been around since 2010, and we pride ourselves on offering unbiased, critical discussion among people of all different backgrounds about security and technology . We are working every day to make sure our community is one of the best.
  • Need Malware Removal Help?

    If you're being redirected from a site you’re trying to visit, seeing constant pop-up ads, unwanted toolbars or strange search results, your computer may be infected with malware. We offer free malware removal assistance to our members in the Malware Removal Assistance forum.
  • Quick Tip

    Without meaning to, you may click a link that installs malware on your computer. To keep your computer safe, only click links and downloads from sites that you trust. Don’t open any unknown file types, or download programs from pop-ups that appear in your browser.