Skip to content

Didier Stevens Videos

  • Home
  • About
  • count.py

Didier Stevens Videos RSS

  • RSS - Posts

Recent Posts

  • pecheck: Carving PE Files
  • oledump: plugin_http_heuristics
  • Stego & Cryptominers
  • Analyzing Unusual ZIP Files
  • AutoCAD & VBA

Recent Comments

Overview of Content… on AutoCAD & VBA
Overview of Content… on Analyzing .DWG Files With Embe…
Overview of Content… on Encrypted Sextortion PDFs
Overview of Content… on Analyzing DAA Files
Overview of Content… on Analyzing Compressed PowerShel…

Archives

  • March 2020
  • February 2020
  • January 2020
  • December 2019
  • September 2019
  • July 2019
  • May 2019
  • March 2019
  • February 2019
  • January 2019
  • December 2018
  • September 2018
  • August 2018
  • July 2018
  • June 2018
  • December 2017
  • August 2017
  • July 2017
  • June 2017
  • May 2017
  • April 2017
  • March 2017
  • December 2016
  • November 2016
  • October 2016
  • July 2016
  • May 2016
  • December 2015
  • November 2015
  • October 2015
  • September 2015
  • August 2015
  • July 2015
  • June 2015
  • May 2015
  • April 2015
  • March 2015
  • February 2015
  • January 2015
  • December 2014
  • November 2014
  • October 2014
  • September 2014
  • August 2014
  • July 2014

Categories

  • howto
  • malware
  • my software
  • Uncategorized
  • video

Meta

  • Register
  • Log in
  • Entries feed
  • Comments feed
  • WordPress.com

Analyzing DAA Files

Tools: search-for-compression.py

ISC diary entries: “Malicious .DAA Attachments” and “The DAA File Format”

Sample: 6e8947a82c97c26728dc590ed797ee23

1 Comment
September 11, 2019 Didier Stevens

Analyzing Compressed PowerShell Scripts

Tools:  oledump.py, base64dump.py, translate.py

ISC diary entry: Analyzing Compressed PowerShell Scripts

Sample: 1d5794e6b276db06f6f70d5fae6d718e

1 Comment
July 28, 2019 Didier Stevens

nmap Service Detection Customization

Tools: nmap

ISC diary entry: nmap Service Fingerprint

1 Comment
May 27, 2019 Didier Stevens

Analysis of PDFs Created with OpenOffice/LibreOffice

Tools: pdfid.py, pdf-parser.py

ISC diary entry: Analysis of PDFs Created with OpenOffice/LibreOffice

1 Comment
May 19, 2019 Didier Stevens

Maldoc Analysis: Excel 4.0 Macro

Sample: 7df15be35bd8fd1a98adc24e6be7bfcd..

Tools: oledump.py

ISC Diary entry: Maldoc: Excel 4.0 Macro

2 Comments
March 31, 2019 Didier Stevens

Maldoc: Excel 4.0 Macro

Sample: 007de2c71861a3e1e6d70f7fe8f4ce9b.

Tools: oledump.py

Blog post: Maldoc: Excel 4.0 Macro

1 Comment
March 15, 2019March 15, 2019 Didier Stevens

Analyzing a Phishing PDF with /ObjStm

Sample: 55c336693e66b5d6a799b6b4f8eb5f1a.

Tools: pdfid.py, pdf-parser.py

Blog post: Analyzing a Phishing PDF with /ObjStm

1 Comment
March 11, 2019 Didier Stevens

Posts navigation

← Older posts
Newer posts →
Blog at WordPress.com.
Didier Stevens Videos
Blog at WordPress.com.
Cancel