Linux Today: Linux News On Internet Time.

New Linux OS REMnux Designed For Reverse Engineering Malware

Jul 12, 2010, 12:36 (0 Talkback[s])
(Other stories by Dennis Fisher)

"A security expert has released a stripped-down Ubuntu distribution designed specifically for reverse-engineering malware. The OS, called REMnux, includes a slew of popular malware-analysis, network monitoring and memory forensics tools the comprise a very powerful environment for taking apart malicious code.

"Many security professionals who find themselves needing to analyze a specific piece of malware end up in a difficult situation. The classic approach to analyzing malware is to set up a virtual machine on a PC specifically designed for that purpose and then let the malware loose and see what it does. But that usually only shows you part of the picture; much of the malware's behavior can remain hidden without the ability to do some deeper analysis.

"And that's exactly what REMnux is designed to do. The OS is a lightweight version of Ubuntu that is distributed as a VMware virtual machine. It can be booted via several VMware products, or through X-Windows."

Complete Story

Related Stories: