Reverse engineering of malware is an extremely time and labor-intensive process which can involve hours of disassembling and sometimes deconstructing a software program. PE Tree lowers the bar for dumping and reconstructing malware from memory and provides an open-source PE viewer code-base that the cybersecurity community can leverage in the fight against constantly evolving cyberthreats. 

RSA® Conference, the world’s leading information security conferences and expositions, concluded its 30th annual event, which took place as a fully virtual experience this week. This year’s theme was Resilience, and in honor of all that the cybersecurity industry has accomplished over the past three decades, offered a must-attend celebration of thought leadership and education.


More than 20,000 people registered to view 449 sessions including, keynotes, track sessions, interactive programs, tutorials, seminars, and many special digital-first programs that focused on best practices and innovation. The content covered many of the industry’s most pressing topics, including privacy, machine learning and artificial intelligence, analytics, anti-fraud, policy and government, and risk management and governance.

Malware Reverse Engineering with PE Tree—OSS Inspired by COVID

Conference: RSA Conference 2021

Abstract

Post a comment

Related work

Lost in the Loader: The Many Faces of the Windows PE File Format

Greybox Program Synthesis: A New Approach to Attack Dataflow Obfuscation

A New Trend for the Blue Team - Using a Practical Symbolic Engine to Detect Evasive Forms of Malware/Ransomware

Security Metrics: Protecting Our Digital Assets of the Future