Lab notebook
In-depth analyses of malware samples, technique deep-dives, and lab notes from the field. Long-form, technical, no fluff.
148 articles across all categories — page 17 of 17
How malware rewrites itself to break signature-based detection — from simple stub rotation to full binary rewriting — and what detection strategies work against each technique.
A systematic reference covering all eighteen malware categories — from viruses and worms to fileless threats and logic bombs — with real-world examples, detection methods, and the three-question triage framework.
A foundational look at what malware is, why analysis matters, and how the field is structured around reading the story a binary tells.
Reverse engineering njRAT: PE structure, .NET decompilation, IOCs.