Secondary Categories: 02-Malware
Description:
There are some great tools on testing you malware payloads
- PEStudio
- AMSI.fail
- Run.Any
If you want to analyze payloads in a lab I suggest setting up a small 3 computer AD Lab with ELK stack on a Ubuntu machine, Windows Workstation with Sysmon, and Windows Server running AD.
You can also use sysinternal tools such as
- Procmon
Or you can use third party tools such as
- Process Hacker
Resources:
Title | URL |
---|---|
place | holder |