VERA
VERA is a visualization tool for analyzing compiled code. It reduces the overall time of analysis and quickly gives the reverse engineer a high level overview of the runtime behavior of a program.
Download VERA 0.3:
Installer (VeraSetup.msi)
md5sum: da8c73442f03773182b76735e88a9c07
sha1sum: 426a1dd750a414a4e6f8a3858487185a8e2afffb
sha256sum: 3ec8a08daf15369df32c29f1932d3128d41d2a2cffcc6e0cd6a99177f8b3869f
Manual
Other malware analysis at LANL...
Publications
-
Improving antivirus accuracy with hypervisor assisted analysis,
Daniel Quist, Lorie Liebrock, Joshua Neil
Journal in Computer Virology (Published online: 6 April 2010) -
Visualizing compiled executables for malware analysis,
D.A. Quist, L.M. Liebrock
6th International Workshop on Visualization for Cyber Security (VizSec 2009)—Best Paper