Tools: GNU Radio Companion.
howto
GNU Radio Companion: Simple Filters
Tools: GNU Radio Companion.
GNU Radio Companion: Acoustic Beats
YARA: Ad Hoc Rules
pecheck: Carving PE Files
oledump: plugin_http_heuristics
Stego & Cryptominers
Tools: format-bytes.py, pecheck.py, file-magic.py, cut-bytes.py.
Blog post: Steganography and Malware
Sample: DB043392816146BBE6E9F3FE669459FEA52A82A77A033C86FD5BC2F4569839C9
ISC Diary Entry: Video: Stego & Cryptominers
Encrypted Sextortion PDFs
Tools: pdfid.py and pdf-parser.py, QPDF and Poppler.
ISC diary entries: “Encrypted Sextortion PDFs”
Sample: 294592cd85ddf80ad1a092f955f1ae25
nmap Service Detection Customization
Analysis of PDFs Created with OpenOffice/LibreOffice
Tools: pdfid.py, pdf-parser.py
ISC diary entry: Analysis of PDFs Created with OpenOffice/LibreOffice
Didier Stevens Videos 