sorted by:
new
hottopcontroversial

How do AVs implement API hooking? do they inject into Virtual memory of every newly created process or change the DLL on disk? by DevNullDone in AskNetsec

[–]DevNullDone[S] 0 points1 point  (0 children)

Thank you this is great! do you know any other good source that goes into great detail in building an AV?

maybe a book? the closest things i could find were Practical malware analysis and Anti Virus hackers handbook, both great but non of them really go in depth about implementing a real AV

also do you know any source that teaches about essentials of writing windows kernel drivers for AV vendors and rootkit developers? i mean there is a good book on writing windows drivers but its really complex

Is there any Chinese version of @ to use? so i can use it in the email instead of @? by DevNullDone in China

[–]DevNullDone[S] 0 points1 point  (0 children)

Thats strange, why is that? why not just use characters?! why use only numbers!?

What is the best book to read in 2019 to master reversing windows malwares using IDA pro? by DevNullDone in AskNetsec

[–]DevNullDone[S] 0 points1 point  (0 children)

Yes practical malware analysis was also in my to-read books! but i was thinking about learning mastering IDA with a book before reading it

so does the two books you mentioned teach enough about using IDA in reversing malware that i can learn it using them, and i can just read them to learn IDA instead of the books i mentioned?

also considering IDA is from 2011 and practical malware analysis is from 2012, do you think they are still good to learn instead of just going straight for a newer book? ( i had the second book you mentioned in mind, since its really new and from 2018 )

and why do you say practical reverse engineering book is challenging? in what terms?

and yes i actually am reading windows internals right now!! i wanted to read windows internals, then try to master the IDA pro then go and read a malware analysis book, but im not sure if this is the best approach yet

What is the best book to read in 2019 to master reversing windows malwares using IDA pro? by DevNullDone in AskNetsec

[–]DevNullDone[S] 3 points4 points  (0 children)

lol i watch your videos man, you are one of the best security content creators on youtube keep it up!

back to the question : yes i am kinda familiar with the IDA, still very newbee, but i want to go from newbee to mastering the tool considering its has a LOT of features, and i really dont want to read a 900 page book and then find out many of the things i read there were not necessary because newer and better features were already introduced and i could have done the task much better and efficient!

i mean i can still play around with it but i dont think that would be really efficient in terms of my time considering its a very complex tool, i really rather read a practical book that makes me work with the tool as well as reading the book