winitor
pestudio
references
articles
articles
Material from different presentations, lectures and projects.
Malware Analysis Fundamentals > Files and Tools
Windows Process-Hollowing
Windows Task Scheduler
Windows Alternate Data Streams (ADS)
Windows Dynamic-Link Libraries
Windows Security Components
Windows Security Environment
Windows User Mode Components
Windows Encrypting File System (EFS)
Windows Debug Interface Access (DIA) API
Monitor performance counters and trigger alerts
Introduction to Cryptography
Inspect the Content of a Program Database (PDB) File
Retrieve the Assembly Identities from a Manifest using C++