encryptedmind

This article provides a step by step approach from ground up to devising your own malware classifier using machine learning fundamentals. Naive Bayes Rule, statistics and ranking algos. This is more like AV - Heuristics and other methods that dont have to depend exclusively on signatures, which are little more than file specific fingerprints based on byte pattern hashes or format anomalies that are boiled down to a detection checklist. However, this is still not a 100 percent perfected method though enougl calibration will certainly provide a workable and reliable enough engine. This discussion should encourage you to build your own variations and share their results Link 1 : http://resources.infosecinstitute.com/machine-learning-naive-bayes-rule-for-malware-detection-and-classification/ Link 2 : http://resources.infosecinstitute.com/naive-bayes-rule-building-your-own-malware-classifier-ii/ Link 3 : http://resources.infosecinstitute.com/machine-learning-part-3-ranking/

This 3 part article gives a comprehensive description of Windows commandline usage and how the myriad commands may be used to maximise productivity in malwarre and forensic sessions. Part 1 : http://resources.infosecinstitute.com/command-line-for-windows-malware-analysis-forensics-part-i/ Part 2 : http://resources.infosecinstitute.com/commandline-malware-and-forensics/ Part 3 : http://resources.infosecinstitute.com/cmd-exe-loops-part-iii/