REMnux, A Linux Distro For Malware Analysis
There are many people out there that want to start malware analysis and reverse engineering, but don’t know where to start, so this article intention is to show everybody interested in malware analysis a Linux lightweight distro for doing malware analysis with reverse engineering tools. This distribution is called REMnux, it is based on Ubuntu and it is maintained by Lenny Zelster, a business and tech leader with extensive experience in information technology and security.
Do you want to know what is inside the pdf file that someone attached to the email? What does this executable do? Does it do what it says it does, or it connects us to an unknown machine? If you want to answer this questions, then REMnux is the best friend for you, REMnux offers a various number of tools for analyzing malicious software and files, such as malicious exe files, browser based malware and pdf files. You can also use specific REMnux tools to perform analysis on Flash programs and obfuscated Java script.
The good news about REMnux is that all tools included in it are free and well known in the malware analysis industry. So all you need is a book to read or articles on the internet about reverse engineering and learn how to use the tools. It is all up on you! REMnux was originally released in 2010 and it has been updated to version 4 in April 2013. Where can I download REMnux? There are two choices about the download, you can choose to download download the REMnux distribution as a virtual appliance archive and as an ISO image of a Live CD. You can find the downloads link listed below.
- OVF/OVA virtual appliance: remnux-4.0-ovf-public.ova
- VMware virtual appliance: remnux-4.0-vm-public.zip
- ISO image of a Live CD: remnux-4.0-live-cd.iso
To install the virtual appliance you need a virtualization software, the REMnux virtual appliance is compatible with many virtualization tools, such as VMware Player, VMware Workstation, VMware Fusion and VirtualBox. So before running remnux-4.0-ovf-public.ova you need one of these virtualization tools. I recommend using VMware, but as always it is up to you on which one to use. Now what to tell about the iso image file? I think you know what to do with it, go and burn it! (Not on fire guys :D)
Like us on Facebook
This week Top Posts
- Top Things To Do After Installing Ubuntu 13.10 'Saucy Salamander' : Ubuntu 13.10 Saucy Salamander will be released on coming October 17th with many new salient featur...0 comments |
- Configure Your Browser To Use Tor On Ubuntu/Debian/Linux Mint : Tor, The Onion Router, is a network of Virtual Tunnels that allows users to communicate securely and...2 comments |
- Setup A Full Featured ITIL Management System Using Integria IMS On CentOS 6 : Integria IMS is a fully featured ITIL management system, featuring a ticketing system, inventory/C...2 comments |
- How To Upgrade From Ubuntu 13.04 Raring To Ubuntu 13.10 Saucy Salamander : Ubuntu 13.10 Saucy will be released on October 17th. Hope it will come with lot of improvements and ...0 comments |
- Install lamp with 1 command in Ubuntu 12.10, 13.04 Raring Ringtail & LinuxMint13 : Updated: 10/09/2012 :LAMP (Linux, Apache, MySQL and PHP) is an open source Web development platform ...0 comments |
- Install and Configure Samba share in Ubuntu 13.10 'Saucy Salamander' , 13.04| Howto : Updated 05-04-2013: One of the most asked features for Samba is a graphical user interface to help w...0 comments |
- Configure Your Browser To Use Tor On Ubuntu/Debian/Linux Mint
- Setup A Full Featured ITIL Management System Using Integria IMS On CentOS 6
- Install LibreOffice 4.1.3 in Elementary OS ‘Luna’
- How To Install Simple Scan in Crunchbang ‘Waldorf’
- Selene Media Encoder: Convert Audio, Video Files To Most Popular Formats
- Linux Kernel 3.12.2 Is Available For Download! Install / Upgrade Instructions
- CentOS 6.5 Has Been Officially Released!
- Format Junkie: Convert Media Files To All Popular Formats
- Setup Squid Proxy Server On openSUSE 13.1
- TimeShift: Restore Your Linux Desktop To Previous State
This work by unixmen.com is licensed under a Creative Commons Attribution-NonCommercial-NoDerivs 3.0 Unported License.
Copyright © 2008-2013 Unixmen.com .